Issue Types
- Address score-impacting CVEs in your Scorecard
- Issue Resolution and Parked Domains
- Are information leak findings resolved if the leak source is seized by the FBI?
- Content security policy contains broad directives
- Web application potentially vulnerable to Spring4Shell
- Ransomware infection detected
- Low-, medium-, and high-severity patching cadences analyzed
- Vulnerable Log4j issue types
- FAQ about the Log4j vulnerability
- Website uses GoDaddy TLS certificates
- Website hosted by GoDaddy's Wordpress
- Download more than 500 findings per issue
- Separate your outbound NAT to prevent issues with guest wireless traffic
- Exposed Personal Information
- Resolving Malware Findings
- Issue Resolution for Exposed Subdomain
- Website Does Not Implement HSTS Best Practices
- Why are Issue findings duplicated?
- Insecure HTTPS redirect pattern
- Should TLS observation count and the number of evidence entries match?
- Issues reported belong to assets not owned by our organization (misattribution)
- How to validate a Content Security Policy (CSP)
- Session cookie missing 'HttpOnly' flag
- Session cookie missing 'Secure' attribute
- Attack detected
- Outdated Operating System Observed
- SSH Supports Weak Cipher
- SPF Record Contains a Soft Fail
- Malformed SPF Record
- TLS Protocol Uses Weak Cipher