Which HTTP response header can help prevent XSS attacks when set correctly?

  • Accept-Language
  • Access-Control-Allow-Origin
  • Cache-Control
  • Content-Security-Policy
The Content-Security-Policy (CSP) header can help prevent XSS attacks by controlling which resources are allowed to be loaded.
Add your answer
Loading...

Leave a comment

Your email address will not be published. Required fields are marked *