Cobalt Crowdsourced Application PentestCobalt Crowdsourced Application PentestCobalt Crowdsourced Application Pentest

Cobalt Vulnerability Wiki


V14 - Config

Missing X-Frame-Options Header

POC

  • Check the HTTP response headers and observe that there is no x-frame-options header. This can lead to Clickjacking attacks.

Impact

Low

Likelihood

Low