- Nikto v2.5.0
---------------------------------------------------------------------------
+ Target IP:          203.162.10.116
+ Target Hostname:    lmsattt.ptit.edu.vn
+ Target Port:        443
---------------------------------------------------------------------------
+ SSL Info:        Subject:  /CN=*.ptit.edu.vn
                   Altnames: *.ptit.edu.vn, ptit.edu.vn
                   Ciphers:  TLS_AES_256_GCM_SHA384
                   Issuer:   /C=BE/O=GlobalSign nv-sa/CN=AlphaSSL CA - SHA256 - G4
+ Start Time:         2024-04-26 09:20:10 (GMT-4)
---------------------------------------------------------------------------
+ Server: Apache/2.4.41 (Win64) OpenSSL/1.1.1c PHP/7.3.11
+ /: Cookie MoodleSession created without the httponly flag. See: https://developer.mozilla.org/en-US/docs/Web/HTTP/Cookies
+ /: Retrieved x-powered-by header: PHP/7.3.11.
+ /:X-Frame-Options header is deprecated and has been replaced with the Content-Security-Policy HTTP header with the frame-ancestors directive instead. See: https://developer.mozilla.org/en-US/docs/Web/HTTP/Headers/X-Frame-Options
+ /: Uncommon header 'content-style-type' found, with contents: text/css.
+ /: Uncommon header 'content-script-type' found, with contents: text/javascript.
+ /: The site uses TLS and the Strict-Transport-Security HTTP header is not defined. See: https://developer.mozilla.org/en-US/docs/Web/HTTP/Headers/Strict-Transport-Security
+ /: The X-Content-Type-Options header is not set. This could allow the user agent to render the content of the site in a different fashion to the MIME type. See: https://www.netsparker.com/web-vulnerability-scanner/vulnerabilities/missing-content-type-header/
+ Scan terminated: 0 error(s) and 7 item(s) reported on remote host
+ End Time:           2024-04-26 09:21:14 (GMT-4) (64 seconds)
---------------------------------------------------------------------------
+ 1 host(s) tested