Samkit Shah
Results
2
issues of
Samkit Shah
For CKEditor 4.6.2 version, XSS vulnerability is there: https://snyk.io/vuln/npm:[email protected] So changing defaultScriptUrl from https://cdn.ckeditor.com/4.6.2/standard/ckeditor.js to https://cdn.ckeditor.com/4.12.1/standard/ckeditor.js
Setting Security Headers like X-Content-Type I have set the headers in conf/web.xml in Tomcat 8.5.69 but it is not working so found out that we can do it with spring...