logo

Sec-Fetch-Site Header Has an Invalid Value

  • Risk:
  • Informational

  • Type:
  • Passive
Summary

Specifies the relationship between request initiator’s origin and target’s origin.

Solution

Sec-Fetch-Site header must have one of the following values: same-origin, same-site, cross-origin, or none.

References

https://developer.mozilla.org/en-US/docs/Web/HTTP/Headers/Sec-Fetch-Site

Free security scan for your website