ZAP Full Scan Report
github-actions opened this issue · comments
github-actions commented
-
Site: http://heitorgouvea.me
-
Site: https://heitorgouvea.me
New Alerts- Application Error Disclosure [90022] total: 1:
- CORS Misconfiguration [40040] total: 141:
- Content Security Policy (CSP) Header Not Set [10038] total: 11:
- Cross-Domain Misconfiguration [10098] total: 11:
- https://heitorgouvea.me/
- https://heitorgouvea.me/2019/09/17/CVE-2019-15032
- https://heitorgouvea.me/2020/01/03/From-Open-Redirect-to-Session-Token-Leak
- https://heitorgouvea.me/2020/06/23/Scraping-personal-data-exposure-in-the-web
- https://heitorgouvea.me/2020/09/23/Detecting-browser-platform-based-on-fonts
- ..
- Missing Anti-clickjacking Header [10020] total: 11:
- Sub Resource Integrity Attribute Missing [90003] total: 11:
- Cross-Domain JavaScript Source File Inclusion [10017] total: 11:
- HTTPS Content Available via HTTP [10047] total: 79:
- Permissions Policy Header Not Set [10063] total: 11:
- Private IP Disclosure [2] total: 1:
- Strict-Transport-Security Header Not Set [10035] total: 11:
- https://heitorgouvea.me/
- https://heitorgouvea.me/2019/09/17/CVE-2019-15032
- https://heitorgouvea.me/2020/01/03/From-Open-Redirect-to-Session-Token-Leak
- https://heitorgouvea.me/2020/06/23/Scraping-personal-data-exposure-in-the-web
- https://heitorgouvea.me/2020/09/23/Detecting-browser-platform-based-on-fonts
- ..
- X-Content-Type-Options Header Missing [10021] total: 11:
- https://heitorgouvea.me/
- https://heitorgouvea.me/2019/09/17/CVE-2019-15032
- https://heitorgouvea.me/2020/01/03/From-Open-Redirect-to-Session-Token-Leak
- https://heitorgouvea.me/2020/06/23/Scraping-personal-data-exposure-in-the-web
- https://heitorgouvea.me/2020/09/23/Detecting-browser-platform-based-on-fonts
- ..
- Modern Web Application [10109] total: 5:
- https://heitorgouvea.me/2020/01/03/From-Open-Redirect-to-Session-Token-Leak
- https://heitorgouvea.me/2021/12/08/Differential-Fuzzing-Perl-Libs
- https://heitorgouvea.me/2022/12/21/Chaining-vulnerabilities-to-make-web-unavailable
- https://heitorgouvea.me/public/
- https://heitorgouvea.me/public/payloads/tor-browser-fonts-exploit.html
- Re-examine Cache-control Directives [10015] total: 11:
- https://heitorgouvea.me/
- https://heitorgouvea.me/2019/09/17/CVE-2019-15032
- https://heitorgouvea.me/2020/01/03/From-Open-Redirect-to-Session-Token-Leak
- https://heitorgouvea.me/2020/06/23/Scraping-personal-data-exposure-in-the-web
- https://heitorgouvea.me/2020/09/23/Detecting-browser-platform-based-on-fonts
- ..
- Storable and Cacheable Content [10049] total: 11:
- https://heitorgouvea.me/
- https://heitorgouvea.me/2019/09/17/CVE-2019-15033
- https://heitorgouvea.me/2020/01/03/From-Open-Redirect-to-Session-Token-Leak
- https://heitorgouvea.me/2020/06/23/Scraping-personal-data-exposure-in-the-web
- https://heitorgouvea.me/2020/09/23/Detecting-browser-platform-based-on-fonts
- ..
- User Agent Fuzzer [10104] total: 626:
View the following link to download the report.
RunnerID:6579205227