[WT-12639] [Security] ZAP Scan reported issue : Cross-Domain JavaScript Source File Inclusion - Workterra Jira

Details

Type: Bug
Status: Open
Priority: Medium
Resolution: Unresolved
Affects Version/s: None
Fix Version/s: None
Component/s: None
Labels:
None

Environment:

Production
Bug Severity:
Low
Level:

Admin, Employee, Partner
Module:
BenAdmin - Security
Reported by:
Harbinger
Company:
All Clients/Multiple Clients
Item State:
Development - On Hold

Description

The page includes one or more script files from a third-party domain.
Ensure JavaScript source files are loaded from only trusted sources, and the sources can't be controlled by end users of the application.

Refer attached HTML report for more details

CC Samir Rakesh Roy Jaideep Vinchurkar anirudha joshi

Attachments

Options
- Sort By Name
- Sort By Date
- Ascending
- Descending
- Thumbnails
- List
- Download All

Attachments

StaticReport_Spider.html
53 kB
05/Dec/17 06:33 AM

Issue Links

relates to

NF-2714 Vulnerability Assessment and Penetration Testing for Workterra on Azure US environment.

To Do

Activity

Ascending order - Click to sort in descending order

Hide

Permalink

Santosh Balid (Inactive) added a comment - 16/Jan/18 01:24 PM

Please plan it in future sprints.

Cc : Satya, Jaideep Vinchurkar, Bharti Satpute

Show

Santosh Balid (Inactive) added a comment - 16/Jan/18 01:24 PM Please plan it in future sprints. Cc : Satya , Jaideep Vinchurkar , Bharti Satpute

Hide

Permalink

Vijayendra Shinde (Inactive) added a comment - 04/Apr/18 05:45 AM

CC Samir Vijayendra Shinde Satya Prasad Pise

Show

Vijayendra Shinde (Inactive) added a comment - 04/Apr/18 05:45 AM CC Samir Vijayendra Shinde Satya Prasad Pise

People

Assignee:: Rohan J Khandave (Inactive)

Reporter:: Prasad Pise (Inactive)

Votes:: 0 Vote for this issue

Watchers:: 3 Start watching this issue

Dates

Created:: 05/Dec/17 06:33 AM

Updated:: 15/Dec/20 02:53 AM