The question With our use of modernizr 2.6.2 version we have detected a security vulnerability pointing to presence of unsafe- directive in content security policy header. As per the standards and compliant with CSP, ‘unsafe-‘ prefix dir...
Cross-site Referrer Leakage through usage of unsafe-url in Referrer-Policy is a vulnerability similar to Blind Cross-site Scripting and is reported with information-level severity. It is categorized as ISO27001-A.14.2.5, OWASP 2017-A6, OWASP 2013-A6, CWE