RelateIQ: TRACE disclosure attack may be possible

ID H1:4409
Type hackerone
Reporter eronx
Modified 2014-07-25T20:58:25


I have tried to check if Cross Site Tracing is possible, fired up my command line and curl -X TRACE

The response may not actually shows it is vulnerable, but it is not as well a message for properly configured " no " to Cross Site Tracing attack.

Kindly check it sir.

Thank you very much.

For more information: