News and Announcements icon

Power Platform CommunityForums Power Pages - General Discussions Security vulnerabilities

Power Pages - General Discussions

Unanswered

Security vulnerabilities

(1) Share

Report

Report

Posted on by vsorrentino

5

Hi,

I've a portal page site and I've run a Security Deep Scan on the site itself.

I see these result:

I am amazed at these errors because I should have fixed them all, for example for "X-Content-Type-Options Header Missing" I have:

Same thing for "Content Security Policy (CSP) Header not set" where I've:

Did I miss steps? Am I missing something?

Best Regards

Vincenzo

Categories:

All responses Img

All responses (1)

Answers Img

Answers (0)

RK2021 78 on at

Like (0)

Report

Security vulnerabilities

Hi Vincenzo - I have experienced the exact same, along with file inclusion vulnerability related to MS own files. My view is that the scan is not yet reliable enough to trust the full set of results. Unless others are able to explain why this is occurring.

Helpful resources

News and Announcements

Welcome to the Power Platform Communities - Lets Get Started!

Announcing new navigation menus and the Engage with the Community forum!

Quick Links

Leaderboard > Power Pages - General Discussions

#1

WarrenBelz 9 Most Valuable Professional

#2

Michael E. Gernaey 7 Super User 2025 Season 1

#3

Rondel 6

Overall leaderboard

Featured topics

Solution to LinkedIn Authentication in Power Apps Portals

Product updates

Microsoft Power Platform Community release plans