7.3: Limit Use of Scripting Languages in Web Browsers and Email Clients

CSF v1.1 References:

PF v1.0 References:


Info icon.

The next version of the control set incorporates all or part of this control into: 2.7: Allowlist Authorized Scripts.

Control Statement

Ensure that only authorized scripting languages are able to run in all web browsers and email clients.

[csf.tools Note: For more information on the Critical Security Controls, visit the Center for Internet Security.]