Most common High Risk security issues in the last 30 days
| Issue Type | Category | Percentage |
|---|---|---|
| SQL Injection - MySQL | High | 0.04 |
| SQL Injection - Hypersonic SQL - Time Based | High | 0.04 |
| Open Redirect | High | 0.01 |
Most common Medium Risk security issues in the last 30 days
| Issue Type | Category | Percentage |
|---|---|---|
| Absence of Anti-CSRF Tokens | Medium | 10.59 |
| Cross-Domain Misconfiguration | Medium | 7.16 |
| CSP: Wildcard Directive | Medium | 4.06 |
| CSP: style-src unsafe-inline | Medium | 4.04 |
| CSP: script-src unsafe-inline | Medium | 2.95 |
Most common Low Risk security issues in the last 30 days
| Issue Type | Category | Percentage |
|---|---|---|
| Cross-Domain JavaScript Source File Inclusion | Low | 8.49 |
| Strict-Transport-Security Header Not Set | Low | 6.51 |
| Server Leaks Version Information via "Server" HTTP Response Header Field | Low | 3.49 |
| Strict-Transport-Security Multiple Header Entries (Non-compliant with Spec) | Low | 3.01 |
| X-Content-Type-Options Header Missing | Low | 2.60 |
Most common Info Risk security issues in the last 30 days
| Issue Type | Category | Percentage |
|---|---|---|
| Retrieved from Cache | Informational | 12.93 |
| Information Disclosure - Suspicious Comments | Informational | 12.58 |
| Re-examine Cache-control Directives | Informational | 3.23 |
| User Controllable HTML Element Attribute (Potential XSS) | Informational | 2.77 |
| Loosely Scoped Cookie | Informational | 0.51 |