Http Trace / Track Methods Allowed ( Security Vulnerability )


We have a site. ( ) and we have opted for CASA tier 2 verification, for that we have done DSAT testing on our application and found out that their is a proxy disclosure alert on attack ( TRACE, OPTIONS methods with ‘Max-Forwards’ header. TRACK method. )

So I request you to disable Trace / Track method for my site so that this vulnerability can be fixed.

Link for DSAT scan result with ZAP on

We’ve responded to your ticket in the helpdesk.