Details
Alert Id 10016
Alert Type Passive
Status deprecated
Risk
CWE
WASC
Tags

Summary

Web Browser XSS Protection is not enabled, or is disabled by the configuration of the ‘X-XSS-Protection’ HTTP response header on the web server

Deprecated: 2020-02-11

No longer widely supported by browsers.

Solution

References

Code