Reset Search
 

 

Article

KB45328 - Is Pulse Connect Secure Vulnerable to Cross-Frame Scripting?

« Go Back

Information

 
Last Modified Date7/19/2022 2:52 PM
Synopsis
This knowledge article provides details on how to harden PCS against Cross-Frame Scripting.
Problem or Goal
Vulnerability scan reports may show that PCS is vulnerable to to Cross-Frame Scripting.
Cause

 
Solution
To resolve this, please enable "X-Frame-Options protection" under: System > Configuration > Security > Miscellaneous > X-Frame-Options protection

X-Frame-Options protection - You can choose to defend against click-jacking attacks by adding X-Frame-Option header to all the IVE generated pages. If this is not enabled, then only welcome.cgi will have this header

Related Links
Attachment 1 
Created ByBryan Ferreras

Feedback

 

Was this article helpful?


   

Feedback

Please tell us how we can make this article more useful.

Characters Remaining: 255