Request a Demo

Subresource Integrity (SRI)

Description

During the scan, Kayran managed to find the Subresource Integrity (SRI) vulnerability.
Subresource Integrity (SRI) provides a mechanism for checking the integrity of resources hosted by the third parties. It also checks that the resource does not perform any malicious processes.

If you use the site with a third-party DNS service and the DNS service is either hacked or hijacked, it means that your site has also been hacked or hijacked.

Recommendation

To safely use Subresource Integrity make sure you add the Integrity attribute into the script tag with a base64 encoded cryptographic hash value.

References

https://developer.mozilla.org/en-US/docs/Web/Security/Subresource_Integrity

< Return to all Vulnerabilities

Request a Demo

Passwords 101

Unlike basketballs, “passwords” are things we don’t want to be passed around, especially in a society built around the idea that “mystery” is appealing. We

Read More »

What is a CWE ?

Similar to the article written on CVEs, in this article we will answer the questions :What is CWE ? and, what is the difference between

Read More »

Exposing the GIT

Let’s start with defining the meaning of GIT. GIT – is an open-source system which we use as a tool to store data and information

Read More »

HTTP VS. HTTPS

You must have once wondered what HTTP means and what is the difference between that ugly word to HTTPS, and if not, then please read

Read More »
Facebook Linkedin

WEB APPLICATION VULNERABILITY SCANNER

Links

registered user?

Log in
Facebook Linkedin