Http Host Serves Jsonp Security Risk
Description
Detects security risks associated with JSONP (JSON with Padding) endpoints exposed in Content Security Policy headers. JSONP endpoints can enable cross-origin data theft and injection attacks if improperly configured, especially when used with permissive CSP directives.
Weakness:
043 - Insecure or unset HTTP headers - Content-Security-Policy
Category: Protocol Manipulation
Detection Strategy
• Analyzes HTTP responses containing Content-Security-Policy (CSP) headers
• Identifies hosts/domains listed in CSP directives that are known to serve JSONP endpoints
• Reports a vulnerability when CSP allows access to domains with JSONP endpoints that could enable data theft
Search for vulnerabilities in your apps for free with Fluid Attacks' automated security testing! Start your 21-day free trial and discover the benefits of the Continuous Hacking Essential plan. If you prefer the Advanced plan, which includes the expertise of Fluid Attacks' hacking team, fill out this contact form.