Description

Referrer Policy controls behaviour of the Referer header, which indicates the origin or web page URL the request was made from. The web application uses insecure Referrer Policy configuration that may leak user's information to third-party sites.

Remediation

Consider setting Referrer-Policy header to 'strict-origin-when-cross-origin' or a stricter value

References

Related Vulnerabilities