Most common High Risk security issues in the last 30 days
| Issue Type | Category | Percentage |
|---|---|---|
| Hash Disclosure - Mac OSX salted SHA-1 | High | 0.05 |
| Viewstate without MAC Signature (Unsure) | High | 0.03 |
| Anti-CSRF Tokens Check | High | 0.01 |
| Vulnerable Version of the Library 'moment.js' Found | High | < 0.01 |
| Vulnerable Version of the Library 'nextjs' Found | High | < 0.01 |
Most common Medium Risk security issues in the last 30 days
| Issue Type | Category | Percentage |
|---|---|---|
| Reverse Tabnabbing | Medium | 2.27 |
| Content Security Policy (CSP) Header Not Set | Medium | 1.82 |
| CSP: Wildcard Directive | Medium | 1.19 |
| Vulnerable Version of the Library 'jquery' Found | Medium | 1.08 |
| X-Frame-Options Header Not Set | Medium | 0.53 |
Most common Low Risk security issues in the last 30 days
| Issue Type | Category | Percentage |
|---|---|---|
| Cross-Domain JavaScript Source File Inclusion | Low | 13.28 |
| Absence of Anti-CSRF Tokens | Low | 12.17 |
| Cookie No HttpOnly Flag | Low | 2.65 |
| Cookie Without SameSite Attribute | Low | 2.52 |
| Cookie Without Secure Flag | Low | 2.49 |
Most common Info Risk security issues in the last 30 days
| Issue Type | Category | Percentage |
|---|---|---|
| Timestamp Disclosure - Unix | Informational | 46.25 |
| Information Disclosure - Suspicious Comments | Informational | 2.32 |
| User Controllable HTML Element Attribute (Potential XSS) | Informational | 1.74 |
| Retrieved from Cache | Informational | 0.52 |
| Loosely Scoped Cookie | Informational | 0.24 |