You signed in with another tab or window. Reload to refresh your session.You signed out in another tab or window. Reload to refresh your session.You switched accounts on another tab or window. Reload to refresh your session.Dismiss alert
After having done a security scan on our site we found the following warning below.
Is there a way to disable the flash player altogether?
We have no intentions to support flash on our new site or old browsers that still do.
Security Testing | Flash Cross Domain Policy
Issue No. 6 Flash Cross Domain Policy
OWASP Category A6:2017-Security Misconfiguration
Severity Low
IP/URL. https://secure.brightcove.comsecure.brightcove.com
Description
The application publishes a Flash cross-domain policy which allows access from specific other domains. Allowing access from specific domains means that web sites on those domains can perform two-way interaction with this application. You should only use this policy if you fully trust the specific domains allowed by the policy.
Recommendation
You should review the domains which are allowed by the Flash cross-domain policy and determine whether it is appropriate for the application to fully trust both the intentions and security posture of those domains.
The text was updated successfully, but these errors were encountered:
After having done a security scan on our site we found the following warning below.
Is there a way to disable the flash player altogether?
We have no intentions to support flash on our new site or old browsers that still do.
The text was updated successfully, but these errors were encountered: