Cobalt Crowdsourced Application PentestCobalt Crowdsourced Application PentestCobalt Crowdsourced Application Pentest

Cobalt Vulnerability Wiki


V14 - Config

Missing Strict Transport Security Header (HSTS)

POC

  • Navigate to the website
  • See the HTTP Response headers and observe that Strict Transport Security Header is missing

Impact

Low

Likelihood

Low