https://community.qlik.com/t5/Management-Governance/Vulnerabilities-found-during-QlikSense-application-scan/m-p/1876878#M30122 <P>Hi&nbsp;<a href="https://community.qlik.com/t5/user/viewprofilepage/user-id/160499">@Pawan_Mahajan</a>,<BR /><BR />Can you please raise a case with support directly for this issue an be sure to include all the information as mentioned in the article below<BR />-&nbsp;<A href="https://community.qlik.com/t5/Knowledge/Qlik-Security-Vulnerability-Policy/ta-p/1713629" target="_blank">https://community.qlik.com/t5/Knowledge/Qlik-Security-Vulnerability-Policy/ta-p/1713629</A><BR /><BR />You can find the steps to raise a case with support here<BR />-&nbsp;<A href="https://community.qlik.com/t5/Knowledge/How-to-create-a-case-and-contact-Qlik-Support/ta-p/1710992" target="_blank">https://community.qlik.com/t5/Knowledge/How-to-create-a-case-and-contact-Qlik-Support/ta-p/1710992</A>&nbsp;</P> Tue, 04 Jan 2022 07:43:07 GMT Seanog_Murphy 2022-01-04T07:43:07Z https://community.qlik.com/t5/Management-Governance/Vulnerabilities-found-during-QlikSense-application-scan/m-p/1875596#M30121 <P>While doing application vulnerabilities scan we found below issues, 1. <STRONG>Session token in url is visible:</STRONG>- Qlik ticket is visible in qlik application url. 2. <STRONG>Cookies path is not set</STRONG>:- X-Qlik-Session cookie in virtual proxy. This cookie path is not set to root folder. 3. <STRONG>Etag Version Disclosure</STRONG>:- etag is visible on qlik application page.</P> Wed, 29 Jan 2025 16:57:53 GMT https://community.qlik.com/t5/Management-Governance/Vulnerabilities-found-during-QlikSense-application-scan/m-p/1875596#M30121 Pawan_Mahajan 2025-01-29T16:57:53Z https://community.qlik.com/t5/Management-Governance/Vulnerabilities-found-during-QlikSense-application-scan/m-p/1876878#M30122 <P>Hi&nbsp;<a href="https://community.qlik.com/t5/user/viewprofilepage/user-id/160499">@Pawan_Mahajan</a>,<BR /><BR />Can you please raise a case with support directly for this issue an be sure to include all the information as mentioned in the article below<BR />-&nbsp;<A href="https://community.qlik.com/t5/Knowledge/Qlik-Security-Vulnerability-Policy/ta-p/1713629" target="_blank">https://community.qlik.com/t5/Knowledge/Qlik-Security-Vulnerability-Policy/ta-p/1713629</A><BR /><BR />You can find the steps to raise a case with support here<BR />-&nbsp;<A href="https://community.qlik.com/t5/Knowledge/How-to-create-a-case-and-contact-Qlik-Support/ta-p/1710992" target="_blank">https://community.qlik.com/t5/Knowledge/How-to-create-a-case-and-contact-Qlik-Support/ta-p/1710992</A>&nbsp;</P> Tue, 04 Jan 2022 07:43:07 GMT https://community.qlik.com/t5/Management-Governance/Vulnerabilities-found-during-QlikSense-application-scan/m-p/1876878#M30122 Seanog_Murphy 2022-01-04T07:43:07Z