ZAP scan false positive?
-
HostedScan’s active OWASP ZAP scan vulnerability report says that ‘Strict-Transport-Security Header Not Set’ and provides ‘uri: https://xxxxxxxxx.cloud/wp-content/add-to-cart-direct-checkout-for-woocommerce/public/js/pi-dcw-public.js’ as the source.
Do you know how that could happen?
Many thanks
- You must be logged in to reply to this topic.
