When you see the customer has implemented CSP but...
jeudi 25 août 2016 à 21:00..it’s completely useless:
Content-Security-Policy: default-src ‘self’ ’*’ 'unsafe-inline’ 'unsafe-eval’
Site original : Infosec Reactions
..it’s completely useless:
Content-Security-Policy: default-src ‘self’ ’*’ 'unsafe-inline’ 'unsafe-eval’