Hi Appian,
We have recently installed Appian 17.3. And we want to publish it over internet.
but they have found below vulnerabilities:
1.The remote web server in some responses sets a permissive Content-Security-Policy (CSP) response header or does not set one at all.
2.The remote web server in some responses sets a permissive X-Frame-Options response header or does not set one at all.
Can you please let us know how can we resolve this.
Discussion posts and replies are publicly visible