Skip to content
← Back to Glossary
Security Headers Checked by Vezraa

Content Security Policy (CSP)

A security header that controls which resources can load on your page.

CSP is a browser security mechanism that specifies allowed sources for scripts, styles, images, and other resources. A well-configured CSP prevents XSS even if an injection vulnerability exists. Can also control form actions, frame ancestors, and more.

Related Terms

See this vulnerability in the database

See if your app is vulnerable

Vezraa checks for this security issues. Scan in 25 seconds.

Content Security Policy (CSP) — Security Glossary | Vezraa