This repository has been archived by the owner on Jan 23, 2023. It is now read-only.
-
Notifications
You must be signed in to change notification settings - Fork 3
/
audit.json
217 lines (217 loc) · 30.4 KB
/
audit.json
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
129
130
131
132
133
134
135
136
137
138
139
140
141
142
143
144
145
146
147
148
149
150
151
152
153
154
155
156
157
158
159
160
161
162
163
164
165
166
167
168
169
170
171
172
173
174
175
176
177
178
179
180
181
182
183
184
185
186
187
188
189
190
191
192
193
194
195
196
197
198
199
200
201
202
203
204
205
206
207
208
209
210
211
212
213
214
215
216
217
[{
"10010_Cookie No HttpOnly Flag_https://moneyclaims-legal.aat.platform.hmcts.net/claim/cookie_GET": "ignore",
"10010_Cookie No HttpOnly Flag_https://moneyclaims-legal.aat.platform.hmcts.net/img/lib/apple-touch-icon-152x152.png?%5E0.26.0_GET": "ignore",
"10010_Cookie No HttpOnly Flag_https://moneyclaims-legal.aat.platform.hmcts.net/img/lib/apple-touch-icon-167x167.png?%5E0.26.0_GET": "ignore",
"10010_Cookie No HttpOnly Flag_https://moneyclaims-legal.aat.platform.hmcts.net/img/lib/apple-touch-icon-180x180.png?%5E0.26.0_GET": "ignore",
"10010_Cookie No HttpOnly Flag_https://moneyclaims-legal.aat.platform.hmcts.net/img/lib/gov.uk_logotype_crown.svg?%5E0.26.0_GET": "ignore",
"10010_Cookie No HttpOnly Flag_https://moneyclaims-legal.aat.platform.hmcts.net/img/lib/gov.uk_logotype_crown_invert_trans.png?%5E0.26.0_GET": "ignore",
"10010_Cookie No HttpOnly Flag_https://moneyclaims-legal.aat.platform.hmcts.net/js/analytics.js_GET": "ignore",
"10010_Cookie No HttpOnly Flag_https://moneyclaims-legal.aat.platform.hmcts.net/js/double-click-preventer.js_GET": "ignore",
"10010_Cookie No HttpOnly Flag_https://moneyclaims-legal.aat.platform.hmcts.net/js/lib/govuk-template.js?%5E0.26.0_GET": "ignore",
"10010_Cookie No HttpOnly Flag_https://moneyclaims-legal.aat.platform.hmcts.net/js/lib/govuk/shim-links-with-button-role.js_GET": "ignore",
"10010_Cookie No HttpOnly Flag_https://moneyclaims-legal.aat.platform.hmcts.net/js/lib/ie.js?%5E0.26.0_GET": "ignore",
"10010_Cookie No HttpOnly Flag_https://moneyclaims-legal.aat.platform.hmcts.net/js/lib/jquery.min.js_GET": "ignore",
"10010_Cookie No HttpOnly Flag_https://moneyclaims-legal.aat.platform.hmcts.net/robots.txt_GET": "ignore",
"10010_Cookie No HttpOnly Flag_https://moneyclaims-legal.aat.platform.hmcts.net/sitemap.xml_GET": "ignore",
"10010_Cookie No HttpOnly Flag_https://moneyclaims-legal.aat.platform.hmcts.net/stylesheets/application.css_GET": "ignore",
"10010_Cookie No HttpOnly Flag_https://moneyclaims-legal.aat.platform.hmcts.net/stylesheets/lib/govuk-template-ie6.css?%5E0.26.0_GET": "ignore",
"10010_Cookie No HttpOnly Flag_https://moneyclaims-legal.aat.platform.hmcts.net/stylesheets/lib/govuk-template-ie7.css?%5E0.26.0_GET": "ignore",
"10010_Cookie No HttpOnly Flag_https://moneyclaims-legal.aat.platform.hmcts.net/stylesheets/lib/govuk-template-print.css?%5E0.26.0_GET": "ignore",
"10010_Cookie No HttpOnly Flag_https://moneyclaims-legal.aat.platform.hmcts.net/stylesheets/lib/govuk-template.css?%5E0.26.0_GET": "ignore",
"10010_Cookie No HttpOnly Flag_https://moneyclaims-legal.aat.platform.hmcts.net_GET": "ignore",
"10010_Cookie No HttpOnly Flag_https://moneyclaims-legal.aat.platform.hmcts.net/js/lib/govuk/show-hide-content.js_GET": "ignore",
"10010_Cookie No HttpOnly Flag_https://moneyclaims-legal.aat.platform.hmcts.net/receiver_GET": "ignore",
"10010_Cookie No HttpOnly Flag_https://moneyclaims-legal.aat.platform.hmcts.net/img/lib/favicon.ico?%5E0.26.0_GET": "ignore",
"10010_Cookie No HttpOnly Flag_https://moneyclaims-legal.aat.platform.hmcts.net/_GET": "ignore",
"10010_Cookie No HttpOnly Flag_https://moneyclaims-legal.aat.platform.hmcts.net/stylesheets/lib/fonts.css?%5E0.26.0_GET": "ignore",
"10010_Cookie No HttpOnly Flag_https://moneyclaims-legal.aat.platform.hmcts.net/accessibility-statement_GET": "ignore",
"10010_Cookie No HttpOnly Flag_https://moneyclaims-legal.aat.platform.hmcts.net/js/detectJavascript.js_GET": "ignore",
"10011_Cookie Without Secure Flag_https://moneyclaims-legal.aat.platform.hmcts.net/_GET": "ignore",
"10011_Cookie Without Secure Flag_https://moneyclaims-legal.aat.platform.hmcts.net_GET": "ignore",
"10011_Cookie Without Secure Flag_https://moneyclaims-legal.aat.platform.hmcts.net/robots.txt_GET": "ignore",
"10015_Incomplete or No Cache-control and Pragma HTTP Header Set_https://moneyclaims-legal.aat.platform.hmcts.net/img/lib/gov.uk_logotype_crown.svg?%5E0.26.0_GET": "ignore",
"10015_Incomplete or No Cache-control and Pragma HTTP Header Set_https://moneyclaims-legal.aat.platform.hmcts.net/stylesheets/application.css_GET": "ignore",
"10015_Incomplete or No Cache-control and Pragma HTTP Header Set_https://moneyclaims-legal.aat.platform.hmcts.net/stylesheets/lib/fonts.css?%5E0.26.0_GET": "ignore",
"10015_Incomplete or No Cache-control and Pragma HTTP Header Set_https://moneyclaims-legal.aat.platform.hmcts.net/stylesheets/lib/govuk-template-ie6.css?%5E0.26.0_GET": "ignore",
"10015_Incomplete or No Cache-control and Pragma HTTP Header Set_https://moneyclaims-legal.aat.platform.hmcts.net/stylesheets/lib/govuk-template-ie7.css?%5E0.26.0_GET": "ignore",
"10015_Incomplete or No Cache-control and Pragma HTTP Header Set_https://moneyclaims-legal.aat.platform.hmcts.net/stylesheets/lib/govuk-template-ie8.css?%5E0.26.0_GET": "ignore",
"10015_Incomplete or No Cache-control and Pragma HTTP Header Set_https://moneyclaims-legal.aat.platform.hmcts.net/stylesheets/lib/govuk-template-print.css?%5E0.26.0_GET": "ignore",
"10015_Incomplete or No Cache-control and Pragma HTTP Header Set_https://moneyclaims-legal.aat.platform.hmcts.net/stylesheets/lib/govuk-template.css?%5E0.26.0_GET": "ignore",
"10021_X-Content-Type-Options Header Missing_https://moneyclaims-legal.aat.platform.hmcts.net/ruxitagentjs_ICA2QSVfjqru_10193200616095656.js_GET": "ignore",
"10021_X-Content-Type-Options Header Missing_https://moneyclaims-legal.aat.platform.hmcts.net/ruxitagentjs_ICA2QSVfjqru_10207210111183057.js_GET": "ignore",
"10027_Information Disclosure - Suspicious Comments_https://moneyclaims-legal.aat.platform.hmcts.net/js/application.js_GET": "ignore",
"10027_Information Disclosure - Suspicious Comments_https://moneyclaims-legal.aat.platform.hmcts.net/js/lib/govuk/shim-links-with-button-role.js_GET": "ignore",
"10027_Information Disclosure - Suspicious Comments_https://moneyclaims-legal.aat.platform.hmcts.net/js/lib/govuk/show-hide-content.js_GET": "ignore",
"10027_Information Disclosure - Suspicious Comments_https://moneyclaims-legal.aat.platform.hmcts.net/js/lib/ie.js?%5E0.26.0_GET": "ignore",
"10027_Information Disclosure - Suspicious Comments_https://moneyclaims-legal.aat.platform.hmcts.net/js/lib/jquery.min.js_GET": "ignore",
"10027_Information Disclosure - Suspicious Comments_https://moneyclaims-legal.aat.platform.hmcts.net/ruxitagentjs_ICA2QSVfjqru_10193200616095656.js_GET": "ignore",
"10027_Information Disclosure - Suspicious Comments_https://moneyclaims-legal.aat.platform.hmcts.net/ruxitagentjs_ICA2QSVfjqru_10207210111183057.js_GET": "ignore",
"10035_Strict-Transport-Security Header Not Set_https://moneyclaims-legal.aat.platform.hmcts.net/ruxitagentjs_ICA2QSVfjqru_10193200616095656.js_GET": "ignore",
"10054_Cookie Without SameSite Attribute_https://moneyclaims-legal.aat.platform.hmcts.net/_GET": "ignore",
"10054_Cookie Without SameSite Attribute_https://moneyclaims-legal.aat.platform.hmcts.net_GET": "ignore",
"10054_Cookie Without SameSite Attribute_https://moneyclaims-legal.aat.platform.hmcts.net/claim/cookie_GET": "ignore",
"10054_Cookie Without SameSite Attribute_https://moneyclaims-legal.aat.platform.hmcts.net/js/lib/govuk-template.js?%5E0.26.0_GET": "ignore",
"10054_Cookie Without SameSite Attribute_https://moneyclaims-legal.aat.platform.hmcts.net/img/lib/apple-touch-icon-152x152.png?%5E0.26.0_GET": "ignore",
"10054_Cookie Without SameSite Attribute_https://moneyclaims-legal.aat.platform.hmcts.net/js/lib/ie.js?%5E0.26.0_GET": "ignore",
"10054_Cookie Without SameSite Attribute_https://moneyclaims-legal.aat.platform.hmcts.net/stylesheets/lib/govuk-template-ie6.css?%5E0.26.0_GET": "ignore",
"10054_Cookie Without SameSite Attribute_https://moneyclaims-legal.aat.platform.hmcts.net/stylesheets/application.css_GET": "ignore",
"10054_Cookie Without SameSite Attribute_https://moneyclaims-legal.aat.platform.hmcts.net/img/lib/gov.uk_logotype_crown_invert_trans.png?%5E0.26.0_GET": "ignore",
"10054_Cookie Without SameSite Attribute_https://moneyclaims-legal.aat.platform.hmcts.net/accessibility-statement_GET": "ignore",
"10054_Cookie Without SameSite Attribute_https://moneyclaims-legal.aat.platform.hmcts.net/img/lib/apple-touch-icon-167x167.png?%5E0.26.0_GET": "ignore",
"10054_Cookie Without SameSite Attribute_https://moneyclaims-legal.aat.platform.hmcts.net/img/lib/apple-touch-icon-180x180.png?%5E0.26.0_GET": "ignore",
"10054_Cookie Without SameSite Attribute_https://moneyclaims-legal.aat.platform.hmcts.net/img/lib/apple-touch-icon.png?%5E0.26.0_GET": "ignore",
"10054_Cookie Without SameSite Attribute_https://moneyclaims-legal.aat.platform.hmcts.net/img/lib/favicon.ico?%5E0.26.0_GET": "ignore",
"10054_Cookie Without SameSite Attribute_https://moneyclaims-legal.aat.platform.hmcts.net/img/lib/gov.uk_logotype_crown.svg?%5E0.26.0_GET": "ignore",
"10054_Cookie Without SameSite Attribute_https://moneyclaims-legal.aat.platform.hmcts.net/js/detectJavascript.js_GET": "ignore",
"10054_Cookie Without SameSite Attribute_https://moneyclaims-legal.aat.platform.hmcts.net/js/double-click-preventer.js_GET": "ignore",
"10054_Cookie Without SameSite Attribute_https://moneyclaims-legal.aat.platform.hmcts.net/js/lib/govuk/shim-links-with-button-role.js_GET": "ignore",
"10054_Cookie Without SameSite Attribute_https://moneyclaims-legal.aat.platform.hmcts.net/js/lib/govuk/show-hide-content.js_GET": "ignore",
"10054_Cookie Without SameSite Attribute_https://moneyclaims-legal.aat.platform.hmcts.net/js/lib/jquery.min.js_GET": "ignore",
"10054_Cookie Without SameSite Attribute_https://moneyclaims-legal.aat.platform.hmcts.net/js/lib/nodelist-foreach-polyfill.js_GET": "ignore",
"10054_Cookie Without SameSite Attribute_https://moneyclaims-legal.aat.platform.hmcts.net/receiver_GET": "ignore",
"10054_Cookie Without SameSite Attribute_https://moneyclaims-legal.aat.platform.hmcts.net/robots.txt_GET": "ignore",
"10054_Cookie Without SameSite Attribute_https://moneyclaims-legal.aat.platform.hmcts.net/stylesheets/lib/fonts.css?%5E0.26.0_GET": "ignore",
"10054_Cookie Without SameSite Attribute_https://moneyclaims-legal.aat.platform.hmcts.net/stylesheets/lib/govuk-template-ie7.css?%5E0.26.0_GET": "ignore",
"10054_Cookie Without SameSite Attribute_https://moneyclaims-legal.aat.platform.hmcts.net/stylesheets/lib/govuk-template-ie8.css?%5E0.26.0_GET": "ignore",
"10054_Cookie Without SameSite Attribute_https://moneyclaims-legal.aat.platform.hmcts.net/stylesheets/lib/govuk-template.css?%5E0.26.0_GET": "ignore",
"10055_CSP: Wildcard Directive_https://moneyclaims-legal.aat.platform.hmcts.net/accessibility-statement_GET": "ignore",
"10055_CSP: Wildcard Directive_https://moneyclaims-legal.aat.platform.hmcts.net/sitemap.xml_GET": "ignore",
"10095_Backup File Disclosure_https://moneyclaims-legal.aat.platform.hmcts.net/Copy%20(2)%20of%20ruxitagentjs_ICA2QSVfjqru_10193200616095656.js_GET": "ignore",
"10095_Backup File Disclosure_https://moneyclaims-legal.aat.platform.hmcts.net/Copy%20(3)%20of%20ruxitagentjs_ICA2QSVfjqru_10193200616095656.js_GET": "ignore",
"10095_Backup File Disclosure_https://moneyclaims-legal.aat.platform.hmcts.net/Copy%20of%20ruxitagentjs_ICA2QSVfjqru_10193200616095656.js_GET": "ignore",
"10096_Timestamp Disclosure - Unix_https://moneyclaims-legal.aat.platform.hmcts.net/accessibility-statement_GET": "ignore",
"10096_Timestamp Disclosure - Unix_https://moneyclaims-legal.aat.platform.hmcts.net/js/lib/govuk/shim-links-with-button-role.js_GET": "ignore",
"10096_Timestamp Disclosure - Unix_https://moneyclaims-legal.aat.platform.hmcts.net/ruxitagentjs_ICA2QSVfjqru_10193200616095656.js_GET": "ignore",
"10096_Timestamp Disclosure - Unix_https://moneyclaims-legal.aat.platform.hmcts.net/ruxitagentjs_ICA2QSVfjqru_10207210111183057.js_GET": "ignore",
"10096_Timestamp Disclosure - Unix_https://moneyclaims-legal.aat.platform.hmcts.net/sitemap.xml_GET": "ignore",
"10098_Cross-Domain Misconfiguration_https://moneyclaims-legal.aat.platform.hmcts.net/ruxitagentjs_ICA2QSVfjqru_10193200616095656.js_GET": "ignore",
"10098_Cross-Domain Misconfiguration_https://moneyclaims-legal.aat.platform.hmcts.net/ruxitagentjs_ICA2QSVfjqru_10207210111183057.js_GET": "ignore",
"10104_User Agent Fuzzer_https://moneyclaims-legal.aat.platform.hmcts.net/accessibility-statement_GET": "ignore",
"10104_User Agent Fuzzer_https://moneyclaims-legal.aat.platform.hmcts.net/claim_GET": "ignore",
"10104_User Agent Fuzzer_https://moneyclaims-legal.aat.platform.hmcts.net/claim/cookie_GET": "ignore",
"10104_User Agent Fuzzer_https://moneyclaims-legal.aat.platform.hmcts.net/img/lib/apple-touch-icon-167x167.png?%5E0.26.0_GET": "ignore",
"10104_User Agent Fuzzer_https://moneyclaims-legal.aat.platform.hmcts.net/img/lib/apple-touch-icon-180x180.png?%5E0.26.0_GET": "ignore",
"10104_User Agent Fuzzer_https://moneyclaims-legal.aat.platform.hmcts.net/img/lib_GET": "ignore",
"10104_User Agent Fuzzer_https://moneyclaims-legal.aat.platform.hmcts.net/img_GET": "ignore",
"10104_User Agent Fuzzer_https://moneyclaims-legal.aat.platform.hmcts.net/js_GET": "ignore",
"10104_User Agent Fuzzer_https://moneyclaims-legal.aat.platform.hmcts.net/js/double-click-preventer.js_GET": "ignore",
"10104_User Agent Fuzzer_https://moneyclaims-legal.aat.platform.hmcts.net/js/lib/govuk/shim-links-with-button-role.js_GET": "ignore",
"10104_User Agent Fuzzer_https://moneyclaims-legal.aat.platform.hmcts.net/js/lib/govuk_GET": "ignore",
"10104_User Agent Fuzzer_https://moneyclaims-legal.aat.platform.hmcts.net/js/lib/ie.js?%5E0.26.0_GET": "ignore",
"10104_User Agent Fuzzer_https://moneyclaims-legal.aat.platform.hmcts.net/js/lib/jquery.min.js_GET": "ignore",
"10104_User Agent Fuzzer_https://moneyclaims-legal.aat.platform.hmcts.net/js/lib_GET": "ignore",
"10104_User Agent Fuzzer_https://moneyclaims-legal.aat.platform.hmcts.net/receiver_GET": "ignore",
"10104_User Agent Fuzzer_https://moneyclaims-legal.aat.platform.hmcts.net/sitemap.xml_GET": "ignore",
"10104_User Agent Fuzzer_https://moneyclaims-legal.aat.platform.hmcts.net/stylesheets/application.css_GET": "ignore",
"10104_User Agent Fuzzer_https://moneyclaims-legal.aat.platform.hmcts.net/stylesheets/lib_GET": "ignore",
"10104_User Agent Fuzzer_https://moneyclaims-legal.aat.platform.hmcts.net/stylesheets_GET": "ignore",
"10108_Reverse Tabnabbing_https://moneyclaims-legal.aat.platform.hmcts.net/accessibility-statement_GET": "ignore",
"10108_Reverse Tabnabbing_https://moneyclaims-legal.aat.platform.hmcts.net/sitemap.xml_GET": "ignore",
"10109_Modern Web Application_https://moneyclaims-legal.aat.platform.hmcts.net/js/lib/jquery.min.js_GET": "ignore",
"10109_Modern Web Application_https://moneyclaims-legal.aat.platform.hmcts.net/ruxitagentjs_ICA2QSVfjqru_10193200616095656.js_GET": "ignore",
"10109_Modern Web Application_https://moneyclaims-legal.aat.platform.hmcts.net/ruxitagentjs_ICA2QSVfjqru_10207210111183057.js_GET": "ignore",
"40025_Proxy Disclosure_https://moneyclaims-legal.aat.platform.hmcts.net/accessibility-statement_GET": "ignore",
"40025_Proxy Disclosure_https://moneyclaims-legal.aat.platform.hmcts.net/img/lib/apple-touch-icon-152x152.png?%5E0.26.0_GET": "ignore",
"40025_Proxy Disclosure_https://moneyclaims-legal.aat.platform.hmcts.net/img/lib/apple-touch-icon-167x167.png?%5E0.26.0_GET": "ignore",
"40025_Proxy Disclosure_https://moneyclaims-legal.aat.platform.hmcts.net/img/lib/favicon.ico?%5E0.26.0_GET": "ignore",
"40025_Proxy Disclosure_https://moneyclaims-legal.aat.platform.hmcts.net/img/lib/gov.uk_logotype_crown_invert_trans.png?%5E0.26.0_GET": "ignore",
"40025_Proxy Disclosure_https://moneyclaims-legal.aat.platform.hmcts.net/img/lib_GET": "ignore",
"40025_Proxy Disclosure_https://moneyclaims-legal.aat.platform.hmcts.net/js/detectJavascript.js_GET": "ignore",
"40025_Proxy Disclosure_https://moneyclaims-legal.aat.platform.hmcts.net/js/lib/govuk-template.js?%5E0.26.0_GET": "ignore",
"40025_Proxy Disclosure_https://moneyclaims-legal.aat.platform.hmcts.net/js/lib/govuk/show-hide-content.js_GET": "ignore",
"40025_Proxy Disclosure_https://moneyclaims-legal.aat.platform.hmcts.net/js/lib/nodelist-foreach-polyfill.js_GET": "ignore",
"40025_Proxy Disclosure_https://moneyclaims-legal.aat.platform.hmcts.net/js/lib/govuk_GET": "ignore",
"40025_Proxy Disclosure_https://moneyclaims-legal.aat.platform.hmcts.net/js/lib_GET": "ignore",
"40025_Proxy Disclosure_https://moneyclaims-legal.aat.platform.hmcts.net/js/lib/ie.js?%5E0.26.0_GET": "ignore",
"40025_Proxy Disclosure_https://moneyclaims-legal.aat.platform.hmcts.net/js/lib/jquery.min.js_GET": "ignore",
"40025_Proxy Disclosure_https://moneyclaims-legal.aat.platform.hmcts.net/js_GET": "ignore",
"40025_Proxy Disclosure_https://moneyclaims-legal.aat.platform.hmcts.net/receiver_GET": "ignore",
"40025_Proxy Disclosure_https://moneyclaims-legal.aat.platform.hmcts.net/stylesheets/application.css_GET": "ignore",
"40025_Proxy Disclosure_https://moneyclaims-legal.aat.platform.hmcts.net/stylesheets/lib/fonts.css?%5E0.26.0_GET": "ignore",
"40025_Proxy Disclosure_https://moneyclaims-legal.aat.platform.hmcts.net/stylesheets/lib/govuk-template-ie6.css?%5E0.26.0_GET": "ignore",
"40025_Proxy Disclosure_https://moneyclaims-legal.aat.platform.hmcts.net/stylesheets/lib/govuk-template.css?%5E0.26.0_GET": "ignore",
"40025_Proxy Disclosure_https://moneyclaims-legal.aat.platform.hmcts.net/stylesheets/lib_GET": "ignore",
"40025_Proxy Disclosure_https://moneyclaims-legal.aat.platform.hmcts.net_GET": "ignore",
"40025_Proxy Disclosure_https://moneyclaims-legal.aat.platform.hmcts.net/_GET": "ignore",
"90027_Cookie Slack Detector_https://moneyclaims-legal.aat.platform.hmcts.net/accessibility-statement_GET": "ignore",
"90027_Cookie Slack Detector_https://moneyclaims-legal.aat.platform.hmcts.net/claim_GET": "ignore",
"90027_Cookie Slack Detector_https://moneyclaims-legal.aat.platform.hmcts.net/img/lib/apple-touch-icon-152x152.png?%5E0.26.0_GET": "ignore",
"90027_Cookie Slack Detector_https://moneyclaims-legal.aat.platform.hmcts.net/img/lib/apple-touch-icon-167x167.png?%5E0.26.0_GET": "ignore",
"90027_Cookie Slack Detector_https://moneyclaims-legal.aat.platform.hmcts.net/img/lib/apple-touch-icon-180x180.png?%5E0.26.0_GET": "ignore",
"90027_Cookie Slack Detector_https://moneyclaims-legal.aat.platform.hmcts.net/img/lib/gov.uk_logotype_crown.svg?%5E0.26.0_GET": "ignore",
"90027_Cookie Slack Detector_https://moneyclaims-legal.aat.platform.hmcts.net/img/lib/gov.uk_logotype_crown_invert_trans.png?%5E0.26.0_GET": "ignore",
"90027_Cookie Slack Detector_https://moneyclaims-legal.aat.platform.hmcts.net/img/lib_GET": "ignore",
"90027_Cookie Slack Detector_https://moneyclaims-legal.aat.platform.hmcts.net/img_GET": "ignore",
"90027_Cookie Slack Detector_https://moneyclaims-legal.aat.platform.hmcts.net/js/analytics.js_GET": "ignore",
"90027_Cookie Slack Detector_https://moneyclaims-legal.aat.platform.hmcts.net/js/detectJavascript.js_GET": "ignore",
"90027_Cookie Slack Detector_https://moneyclaims-legal.aat.platform.hmcts.net/js/double-click-preventer.js_GET": "ignore",
"90027_Cookie Slack Detector_https://moneyclaims-legal.aat.platform.hmcts.net/js/lib/govuk-template.js?%5E0.26.0_GET": "ignore",
"90027_Cookie Slack Detector_https://moneyclaims-legal.aat.platform.hmcts.net/js/lib/ie.js?%5E0.26.0_GET": "ignore",
"90027_Cookie Slack Detector_https://moneyclaims-legal.aat.platform.hmcts.net/js/lib/jquery.min.js_GET": "ignore",
"90027_Cookie Slack Detector_https://moneyclaims-legal.aat.platform.hmcts.net/js/lib_GET": "ignore",
"90027_Cookie Slack Detector_https://moneyclaims-legal.aat.platform.hmcts.net/js_GET": "ignore",
"90027_Cookie Slack Detector_https://moneyclaims-legal.aat.platform.hmcts.net/robots.txt_GET": "ignore",
"90027_Cookie Slack Detector_https://moneyclaims-legal.aat.platform.hmcts.net/ruxitagentjs_ICA2QSVfjqru_10193200616095656.js_GET": "ignore",
"90027_Cookie Slack Detector_https://moneyclaims-legal.aat.platform.hmcts.net/sitemap.xml_GET": "ignore",
"90027_Cookie Slack Detector_https://moneyclaims-legal.aat.platform.hmcts.net/stylesheets/application.css_GET": "ignore",
"90027_Cookie Slack Detector_https://moneyclaims-legal.aat.platform.hmcts.net/stylesheets/lib/govuk-template-ie6.css?%5E0.26.0_GET": "ignore",
"90027_Cookie Slack Detector_https://moneyclaims-legal.aat.platform.hmcts.net/stylesheets/lib/govuk-template-ie7.css?%5E0.26.0_GET": "ignore",
"90027_Cookie Slack Detector_https://moneyclaims-legal.aat.platform.hmcts.net/stylesheets/lib/govuk-template-print.css?%5E0.26.0_GET": "ignore",
"90027_Cookie Slack Detector_https://moneyclaims-legal.aat.platform.hmcts.net/stylesheets/lib_GET": "ignore",
"90027_Cookie Slack Detector_https://moneyclaims-legal.aat.platform.hmcts.net/stylesheets_GET": "ignore",
"90033_Loosely Scoped Cookie_https://moneyclaims-legal.aat.platform.hmcts.net/_GET": "ignore",
"90033_Loosely Scoped Cookie_https://moneyclaims-legal.aat.platform.hmcts.net_GET": "ignore",
"90033_Loosely Scoped Cookie_https://moneyclaims-legal.aat.platform.hmcts.net/robots.txt_GET": "ignore",
"40025_Proxy Disclosure_https://moneyclaims-legal.aat.platform.hmcts.net/ruxitagentjs_ICA2QSVfjqru_10201200909073022.js_GET": "ignore",
"90027_Cookie Slack Detector_https://moneyclaims-legal.aat.platform.hmcts.net/ruxitagentjs_ICA2QSVfjqru_10201200909073022.js_GET": "ignore",
"10096_Timestamp Disclosure - Unix_https://moneyclaims-legal.aat.platform.hmcts.net/ruxitagentjs_ICA2QSVfjqru_10201200909073022.js_GET": "ignore",
"10027_Information Disclosure - Suspicious Comments_https://moneyclaims-legal.aat.platform.hmcts.net/ruxitagentjs_ICA2QSVfjqru_10201200909073022.js_GET": "ignore",
"40021_SQL Injection - Oracle - Time Based_https://moneyclaims-legal.aat.platform.hmcts.net/stylesheets/lib/govuk-template-ie7.css?^0.26.0_GET": "ignore",
"10098_Cross-Domain Misconfiguration_https://moneyclaims-legal.aat.platform.hmcts.net/ruxitagentjs_ICA2QSVfjqru_10201200909073022.js_GET": "ignore",
"10035_Strict-Transport-Security Header Not Set_https://moneyclaims-legal.aat.platform.hmcts.net/ruxitagentjs_ICA2QSVfjqru_10201200909073022.js_GET": "ignore",
"10035_Strict-Transport-Security Header Not Set_https://moneyclaims-legal.aat.platform.hmcts.net/ruxitagentjs_ICA2QSVfjqru_10207210111183057.js_GET": "ignore",
"10095_Backup File Disclosure_https://moneyclaims-legal.aat.platform.hmcts.net/Copy%20(2)%20of%20ruxitagentjs_ICA2QSVfjqru_10201200909073022.js_GET": "ignore",
"10095_Backup File Disclosure_https://moneyclaims-legal.aat.platform.hmcts.net/Copy%20(3)%20of%20ruxitagentjs_ICA2QSVfjqru_10201200909073022.js_GET": "ignore",
"10095_Backup File Disclosure_https://moneyclaims-legal.aat.platform.hmcts.net/Copy%20of%20ruxitagentjs_ICA2QSVfjqru_10207210111183057.js_GET": "ignore",
"10095_Backup File Disclosure_https://moneyclaims-legal.aat.platform.hmcts.net/Copy%20(2)%20of%20ruxitagentjs_ICA2QSVfjqru_10207210111183057.js_GET": "ignore",
"10095_Backup File Disclosure_https://moneyclaims-legal.aat.platform.hmcts.net/Copy%20(3)%20of%20ruxitagentjs_ICA2QSVfjqru_10207210111183057.js_GET": "ignore",
"10095_Backup File Disclosure_https://moneyclaims-legal.aat.platform.hmcts.net/Copy%20of%20ruxitagentjs_ICA2QSVfjqru_10201200909073022.js_GET": "ignore",
"10109_Modern Web Application_https://moneyclaims-legal.aat.platform.hmcts.net/ruxitagentjs_ICA2QSVfjqru_10201200909073022.js_GET": "ignore",
"10021_X-Content-Type-Options Header Missing_https://moneyclaims-legal.aat.platform.hmcts.net/ruxitagentjs_ICA2QSVfjqru_10201200909073022.js_GET": "ignore",
"10104_User Agent Fuzzer_https://moneyclaims-legal.aat.platform.hmcts.net/_GET": "ignore",
"10104_User Agent Fuzzer_https://moneyclaims-legal.aat.platform.hmcts.net_GET": "ignore",
"40025_Proxy Disclosure_https://moneyclaims-legal.aat.platform.hmcts.net/_GET": "ignore",
"40021_SQL Injection - Oracle - Time Based_https://moneyclaims-legal.aat.platform.hmcts.net/stylesheets/lib/govuk-template-print.css?^0.26.0_GET": "ignore",
"40025_Proxy Disclosure_https://moneyclaims-legal.aat.platform.hmcts.net/js/application.js_GET": "ignore",
"40025_Proxy Disclosure_https://moneyclaims-legal.aat.platform.hmcts.net/sitemap.xml_GET": "ignore",
"40025_Proxy Disclosure_https://moneyclaims-legal.aat.platform.hmcts.net/claim/cookie_GET": "ignore",
"40025_Proxy Disclosure_https://moneyclaims-legal.aat.platform.hmcts.net/claim_GET": "ignore",
"40025_Proxy Disclosure_https://moneyclaims-legal.aat.platform.hmcts.net/stylesheets/lib/govuk-template-print.css?%5E0.26.0_GET": "ignore",
"40025_Proxy Disclosure_https://moneyclaims-legal.aat.platform.hmcts.net/stylesheets/lib/govuk-template-ie8.css?%5E0.26.0_GET": "ignore",
"40025_Proxy Disclosure_https://moneyclaims-legal.aat.platform.hmcts.net/stylesheets/lib/govuk-template-ie7.css?%5E0.26.0_GET": "ignore",
"40025_Proxy Disclosure_https://moneyclaims-legal.aat.platform.hmcts.net/stylesheets_GET": "ignore",
"40025_Proxy Disclosure_https://moneyclaims-legal.aat.platform.hmcts.net/img/lib/apple-touch-icon-180x180.png?%5E0.26.0_GET": "ignore",
"40025_Proxy Disclosure_https://moneyclaims-legal.aat.platform.hmcts.net/img/lib/gov.uk_logotype_crown.svg?%5E0.26.0_GET": "ignore",
"40025_Proxy Disclosure_https://moneyclaims-legal.aat.platform.hmcts.net/js/lib/govuk/shim-links-with-button-role.js_GET": "ignore",
"40025_Proxy Disclosure_https://moneyclaims-legal.aat.platform.hmcts.net/robots.txt_GET": "ignore",
"40025_Proxy Disclosure_https://moneyclaims-legal.aat.platform.hmcts.net/img_GET": "ignore",
"90027_Cookie Slack Detector_https://moneyclaims-legal.aat.platform.hmcts.net_GET": "ignore",
"40025_Proxy Disclosure_https://moneyclaims-legal.aat.platform.hmcts.net/js/analytics.js_GET": "ignore",
"40025_Proxy Disclosure_https://moneyclaims-legal.aat.platform.hmcts.net/js/double-click-preventer.js_GET": "ignore",
"10104_User Agent Fuzzer_https://moneyclaims-legal.aat.platform.hmcts.net/ruxitagentjs_ICA2QSVfjqru_10203201027145855.js_GET": "ignore",
"40025_Proxy Disclosure_https://moneyclaims-legal.aat.platform.hmcts.net/ruxitagentjs_ICA2QSVfjqru_10203201027145855.js_GET": "ignore",
"10055_CSP: Wildcard Directive_https://moneyclaims-legal.aat.platform.hmcts.net/ruxitagentjs_ICA2QSVfjqru_10203201027145855.js_GET": "ignore",
"90027_Cookie Slack Detector_https://moneyclaims-legal.aat.platform.hmcts.net/ruxitagentjs_ICA2QSVfjqru_10203201027145855.js_GET": "ignore",
"10027_Information Disclosure - Suspicious Comments_https://moneyclaims-legal.aat.platform.hmcts.net/ruxitagentjs_ICA2QSVfjqru_10203201027145855.js_GET": "ignore",
"10096_Timestamp Disclosure - Unix_https://moneyclaims-legal.aat.platform.hmcts.net/ruxitagentjs_ICA2QSVfjqru_10203201027145855.js_GET": "ignore",
"10095_Backup File Disclosure_https://moneyclaims-legal.aat.platform.hmcts.net/Copy%20(2)%20of%20ruxitagentjs_ICA2QSVfjqru_10203201027145855.js_GET": "ignore",
"10109_Modern Web Application_https://moneyclaims-legal.aat.platform.hmcts.net/ruxitagentjs_ICA2QSVfjqru_10203201027145855.js_GET": "ignore",
"10021_X-Content-Type-Options Header Missing_https://moneyclaims-legal.aat.platform.hmcts.net/ruxitagentjs_ICA2QSVfjqru_10203201027145855.js_GET": "ignore",
"10035_Strict-Transport-Security Header Not Set_https://moneyclaims-legal.aat.platform.hmcts.net/ruxitagentjs_ICA2QSVfjqru_10203201027145855.js_GET": "ignore",
"10098_Cross-Domain Misconfiguration_https://moneyclaims-legal.aat.platform.hmcts.net/ruxitagentjs_ICA2QSVfjqru_10203201027145855.js_GET": "ignore",
"10054_Cookie Without SameSite Attribute_https://moneyclaims-legal.aat.platform.hmcts.net/js/application.js_GET": "ignore",
"10095_Backup File Disclosure_https://moneyclaims-legal.aat.platform.hmcts.net/Copy%20of%20ruxitagentjs_ICA2QSVfjqru_10203201027145855.js_GET": "ignore",
"10095_Backup File Disclosure_https://moneyclaims-legal.aat.platform.hmcts.net/Copy%20(3)%20of%20ruxitagentjs_ICA2QSVfjqru_10203201027145855.js_GET": "ignore",
"90027_Cookie Slack Detector_https://moneyclaims-legal.aat.platform.hmcts.net/_GET": "ignore"
},
{"task":"OWASP Zaproxy","appname":"https://moneyclaims-legal.aat.platform.hmcts.net","description":"\u003cp\u003eCookies can be scoped by domain or path. This check is only concerned with domain scope.The domain scope applied to a cookie determines which domains can access it. For example, a cookie can be scoped strictly to a subdomain e.g. www.nottrusted.com, or loosely scoped to a parent domain e.g. nottrusted.com. In the latter case, any subdomain of nottrusted.com can access the cookie. Loosely scoped cookies are common in mega-applications like google.com and live.com. Cookies set from a subdomain like app.foo.bar are transmitted only to that domain by the browser. However, cookies scoped to a parent-level domain may be transmitted to the parent, or any subdomain of the parent.\u003c/p\u003e","fingerprint":"90033_Loosely Scoped Cookie_https://moneyclaims-legal.aat.platform.hmcts.net/receiver_GET","detail":"Loosely Scoped Cookie \n Evidence: null \n Solution: \u003cp\u003eAlways scope cookies to a FQDN (Fully Qualified Domain Name).\u003c/p\u003e \n Other info: \u003cp\u003eThe origin domain used for comparison was: \u003c/p\u003e\u003cp\u003emoneyclaims-legal.aat.platform.hmcts.net\u003c/p\u003e\u003cp\u003edtCookie=v_4_srv_1_sn_3FFEFA64492AFC9B8E24F21F2EAEE3A2_perc_100000_ol_0_mul_1\u003c/p\u003e\u003cp\u003e\u003c/p\u003e \n Reference: \u003cp\u003ehttps://tools.ietf.org/html/rfc6265#section-4.1\u003c/p\u003e\u003cp\u003ehttps://owasp.org/www-project-web-security-testing-guide/v41/4-Web_Application_Security_Testing/06-Session_Management_Testing/02-Testing_for_Cookies_Attributes.html\u003c/p\u003e\u003cp\u003ehttp://code.google.com/p/browsersec/wiki/Part2#Same-origin_policy_for_cookies\u003c/p\u003e","source":"URI: https://moneyclaims-legal.aat.platform.hmcts.net/receiver Method: GET","severity":1,"timestamp":"2020-11-03T18:21:00.832+00:00"}, {"task":"OWASP Zaproxy","appname":"https://moneyclaims-legal.aat.platform.hmcts.net","description":"\u003cp\u003eA cookie has been set without the secure flag, which means that the cookie can be accessed via unencrypted connections.\u003c/p\u003e","fingerprint":"10011_Cookie Without Secure Flag_https://moneyclaims-legal.aat.platform.hmcts.net/receiver_GET","detail":"Cookie Without Secure Flag \n Evidence: Set-Cookie: dtCookie \n Solution: \u003cp\u003eWhenever a cookie contains sensitive information or is a session token, then it should always be passed using an encrypted channel. Ensure that the secure flag is set for cookies containing such sensitive information.\u003c/p\u003e \n Other info: null \n Reference: \u003cp\u003ehttps://owasp.org/www-project-web-security-testing-guide/v41/4-Web_Application_Security_Testing/06-Session_Management_Testing/02-Testing_for_Cookies_Attributes.html\u003c/p\u003e","source":"URI: https://moneyclaims-legal.aat.platform.hmcts.net/receiver Method: GET","severity":1,"timestamp":"2020-11-03T18:21:00.832+00:00"}]