ISO27001-A.14.1.2 Web Vulnerability & Security Checks | Invicti

Home / Vulnerabilities / ISO27001-A.14.1.2 / Page 3

Select Category

Search Vulnerability

Vulnerability Name

Classifications

Severity

Cross-site Referrer Leakage through usage of strict-origin-when-cross-origin in Referrer-Policy

CWE-200, ISO27001-A.14.1.2, OWASP 2013-A6, OWASP 2017-A6

Information

Cross-site Referrer Leakage through usage of the origin keyword in Referrer-Policy

CWE-200, ISO27001-A.14.1.2, OWASP 2013-A6, OWASP 2017-A6

Information

Denial of Service (MySQL)

CWE-400, ISO27001-A.14.1.2, WASC-10, CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:C/C:N/I:N/A:H

Information

HTTP Strict Transport Security (HSTS) Max-Age Value Too Low

CWE-16, ISO27001-A.14.1.2, WASC-15

Information

HTTP Strict Transport Security (HSTS) via HTTP

CWE-16, ISO27001-A.14.1.2, WASC-15, OWASP 2017-A6

Information

OPTIONS Method Enabled

CAPEC-107, CWE-16, ISO27001-A.14.1.2, WASC-14, OWASP 2013-A5, OWASP 2017-A6

Information

Out-of-Date (Bootstrap Select)

PCI v3.2-6.2, CAPEC-310, CWE-1035, 937, HIPAA-164.308(a)(1)(i), ISO27001-A.14.1.2, OWASP 2013-A9, OWASP 2017-A9

Information

Out-of-Date (Bootstrap Table)

PCI v3.2-6.2, CAPEC-310, CWE-1035, 937, HIPAA-164.308(a)(1)(i), ISO27001-A.14.1.2, OWASP 2013-A9, OWASP 2017-A9

Information

Out-of-Date (Bootstrap Typeahead)

PCI v3.2-6.2, CAPEC-310, CWE-1035, 937, HIPAA-164.308(a)(1)(i), ISO27001-A.14.1.2, OWASP 2013-A9, OWASP 2017-A9

Information

Out-of-Date (JQuery placeholder.js)

PCI v3.2-6.2, CAPEC-310, CWE-1035, 937, HIPAA-164.308(a)(1)(i), ISO27001-A.14.1.2, OWASP 2013-A9, OWASP 2017-A9

Information

Out-of-date (ASP.NET MVC)

PCI v3.2-6.2, CAPEC-310, CWE-1035, 937, HIPAA-164.308(a)(1)(i), ISO27001-A.14.1.2, OWASP 2013-A9, OWASP 2017-A9

Information

Out-of-date (FrontPage)

PCI v3.2-6.2, CAPEC-310, CWE-1035, 937, HIPAA-164.308(a)(1)(i), ISO27001-A.14.1.2, OWASP 2013-A9, OWASP 2017-A9

Information

Build your resistance to threats. And save hundreds of hours each month.

Get a demo See how it works