Abuse Melding

Je hebt een klacht over de onderstaande posting:

18-01-2020, 15:00 door Anoniem

@anoniem van 10:57 Dat moet Fox-IT zeggen met hun slecht geconfigureerde Content Security Policy settings op die website: evaluatie geeft: default-src https:; script-src https: 'unsafe-inline' 'unsafe-eval'; style-src https: 'unsafe-inline'; object-src 'none'; ////////////////////////// script-src expand_more errorhttps: https: URI in script-src allows the execution of unsafe scripts. error'unsafe-inline' 'unsafe-inline' allows the execution of unsafe in-page scripts and event handlers. help_outline'unsafe-eval' 'unsafe-eval' allows the execution of code injected into DOM APIs such as eval(). //////////////////////////////// errorscript-src Host whitelists can frequently be bypassed. Consider using 'strict-dynamic' in combination with CSP nonces or hashes. expand_more errorhttps: https: URI in script-src allows the execution of unsafe scripts. error'unsafe-inline' 'unsafe-inline' allows the execution of unsafe in-page scripts and event handlers. help_outline'unsafe-eval' 'unsafe-eval' allows the ...

Beschrijf je klacht (Optioneel):

captcha