logo

Sec-Fetch-Mode Header Has an Invalid Value

  • Risk:

  • Informational

  • Type:
  • Passive
Summary
Allows to differentiate between requests for navigating between HTML pages and requests for loading resources like images, audio etc.
Solution
Sec-Fetch-Mode header must have one of the following values: cors, no-cors, navigate, same-origin, or websocket.
References

https://developer.mozilla.org/en-US/docs/Web/HTTP/Headers/Sec-Fetch-Mode

Back <<