The Mayhem for API Difference - A ZAP - API Scan Comparison
ForAllSecure
SEPTEMBER 7, 2022
Errors are triggered for missing CSP Header (which may be implemented at the load balancer rather than in the API) and Anti-CSRF token (which is more of an issue when cookies are involved – not with bearer token access). Medium / Warning.
Let's personalize your content