From 1455b32447141857601023e6f69e09d8872f648c Mon Sep 17 00:00:00 2001
From: zapbot <12745184+zapbot@users.noreply.github.com>
Date: Fri, 23 Aug 2024 07:29:25 +0000
Subject: [PATCH] Update site content
From:
zaproxy/zaproxy-website@5779da5bc86670e613ffb927958b47103e7aeb3d
Signed-off-by: zapbot <12745184+zapbot@users.noreply.github.com>
---
alerttags/cwe-1021/index.xml | 2 +-
alerttags/owasp_2017_a06/index.xml | 2 +-
alerttags/owasp_2021_a05/index.xml | 2 +-
alerttags/wstg-v42-clnt-09/index.xml | 2 +-
docs/alerts/10020-1/index.html | 2 +-
docs/alerts/index.xml | 2 +-
index.xml | 2 +-
search/index.json | 4 ++--
8 files changed, 9 insertions(+), 9 deletions(-)
diff --git a/alerttags/cwe-1021/index.xml b/alerttags/cwe-1021/index.xml
index 432f342b05..92cddf0e20 100644
--- a/alerttags/cwe-1021/index.xml
+++ b/alerttags/cwe-1021/index.xml
@@ -12,7 +12,7 @@
/docs/alerts/10020-1/
Mon, 01 Jan 0001 00:00:00 +0000/docs/alerts/10020-1/
- The response does not include either Content-Security-Policy with ‘frame-ancestors’ directive or X-Frame-Options to protect against ‘ClickJacking’ attacks.
+ The response does not protect against ‘ClickJacking’ attacks. It should include either Content-Security-Policy with ‘frame-ancestors’ directive or X-Frame-Options.Multiple X-Frame-Options Header Entries
diff --git a/alerttags/owasp_2017_a06/index.xml b/alerttags/owasp_2017_a06/index.xml
index 2d5b0c06f7..bbd4badfb0 100644
--- a/alerttags/owasp_2017_a06/index.xml
+++ b/alerttags/owasp_2017_a06/index.xml
@@ -327,7 +327,7 @@
/docs/alerts/10020-1/
Mon, 01 Jan 0001 00:00:00 +0000/docs/alerts/10020-1/
- The response does not include either Content-Security-Policy with ‘frame-ancestors’ directive or X-Frame-Options to protect against ‘ClickJacking’ attacks.
+ The response does not protect against ‘ClickJacking’ attacks. It should include either Content-Security-Policy with ‘frame-ancestors’ directive or X-Frame-Options.Multiple X-Frame-Options Header Entries
diff --git a/alerttags/owasp_2021_a05/index.xml b/alerttags/owasp_2021_a05/index.xml
index 22a8ccabba..35a7fd6dc5 100644
--- a/alerttags/owasp_2021_a05/index.xml
+++ b/alerttags/owasp_2021_a05/index.xml
@@ -285,7 +285,7 @@
/docs/alerts/10020-1/
Mon, 01 Jan 0001 00:00:00 +0000/docs/alerts/10020-1/
- The response does not include either Content-Security-Policy with ‘frame-ancestors’ directive or X-Frame-Options to protect against ‘ClickJacking’ attacks.
+ The response does not protect against ‘ClickJacking’ attacks. It should include either Content-Security-Policy with ‘frame-ancestors’ directive or X-Frame-Options.Multiple X-Frame-Options Header Entries
diff --git a/alerttags/wstg-v42-clnt-09/index.xml b/alerttags/wstg-v42-clnt-09/index.xml
index 60e12e4e1c..acbb6506e2 100644
--- a/alerttags/wstg-v42-clnt-09/index.xml
+++ b/alerttags/wstg-v42-clnt-09/index.xml
@@ -12,7 +12,7 @@
/docs/alerts/10020-1/
Mon, 01 Jan 0001 00:00:00 +0000/docs/alerts/10020-1/
- The response does not include either Content-Security-Policy with ‘frame-ancestors’ directive or X-Frame-Options to protect against ‘ClickJacking’ attacks.
+ The response does not protect against ‘ClickJacking’ attacks. It should include either Content-Security-Policy with ‘frame-ancestors’ directive or X-Frame-Options.Multiple X-Frame-Options Header Entries
diff --git a/docs/alerts/10020-1/index.html b/docs/alerts/10020-1/index.html
index 828e1494c6..c6c000ee9f 100644
--- a/docs/alerts/10020-1/index.html
+++ b/docs/alerts/10020-1/index.html
@@ -231,7 +231,7 @@
Missing Anti-clickjacking Header
Summary
-
The response does not include either Content-Security-Policy with ‘frame-ancestors’ directive or X-Frame-Options to protect against ‘ClickJacking’ attacks.
+
The response does not protect against ‘ClickJacking’ attacks. It should include either Content-Security-Policy with ‘frame-ancestors’ directive or X-Frame-Options.
diff --git a/docs/alerts/index.xml b/docs/alerts/index.xml
index 1febc473a5..891b1f7455 100644
--- a/docs/alerts/index.xml
+++ b/docs/alerts/index.xml
@@ -1119,7 +1119,7 @@
/docs/alerts/10020-1/
Mon, 01 Jan 0001 00:00:00 +0000/docs/alerts/10020-1/
- The response does not include either Content-Security-Policy with ‘frame-ancestors’ directive or X-Frame-Options to protect against ‘ClickJacking’ attacks.
+ The response does not protect against ‘ClickJacking’ attacks. It should include either Content-Security-Policy with ‘frame-ancestors’ directive or X-Frame-Options.Missing Security Headers
diff --git a/index.xml b/index.xml
index e9fff11180..4e949362d8 100644
--- a/index.xml
+++ b/index.xml
@@ -7570,7 +7570,7 @@ Proxy the outgoing HTTP requests made by the web application Direct the server t
Mon, 01 Jan 0001 00:00:00 +0000/docs/alerts/10020-1/
- The response does not include either Content-Security-Policy with ‘frame-ancestors’ directive or X-Frame-Options to protect against ‘ClickJacking’ attacks.
+ The response does not protect against ‘ClickJacking’ attacks. It should include either Content-Security-Policy with ‘frame-ancestors’ directive or X-Frame-Options.
diff --git a/search/index.json b/search/index.json
index 6d73acb954..96a54ab96a 100644
--- a/search/index.json
+++ b/search/index.json
@@ -6100,8 +6100,8 @@
"title": "Missing Anti-clickjacking Header",
"keywords": ["","anti-clickjacking","header","missing"],
"tags": null,
- "summary": "The response does not include either Content-Security-Policy with \u0026lsquo;frame-ancestors\u0026rsquo; directive or X-Frame-Options to protect against \u0026lsquo;ClickJacking\u0026rsquo; attacks.",
- "content": "response does not include either contentsecuritypolicy frameancestors directive xframeoptions protect against clickjacking attacks "
+ "summary": "The response does not protect against \u0026lsquo;ClickJacking\u0026rsquo; attacks. It should include either Content-Security-Policy with \u0026lsquo;frame-ancestors\u0026rsquo; directive or X-Frame-Options.",
+ "content": "response does not protect against clickjacking attacks should include either contentsecuritypolicy frameancestors directive xframeoptions "
},
{
"url": "/docs/alerts/100016/",