ISO Vulnerability Report?
Dear Team,
I have been tasked to address below issues as reported by the ISO team.
Kindly seeking ideas on how to resolve the issues;
1. Clickjacking: X-Frame-Options header missing
2. Content Security Policy (CSP) not implemented
3. Server directory traversal
4. Password type input with auto-complete enabled
5. Sensitive Data Exposure
We are on;
1. Database: 11.2.0.4.0
2. Applicaion: 12.1.3
3. SSL implemented at load balancer level
Thank you all.