Security scan

Hello,

We've recently had a report done on our website and it's come back with the following critical conditions. Please can someone explain them to me in very basic "layman's" terms, so I can try to explain the issues to our MD.

I've looked online but it's all so advanced, it doesn't make much sense.

· TLS Protocol Session Renegotiation Security Vulnerability

· Path-Based Cross-Site Scripting (XSS) (2 off)

· Apache httpd Server Information Disclosure Vulnerability (OptionsBleed)

· OpenSSH 7.4 Not Installed Multiple Vulnerabilities

· Oracle MySQL April 2018 Critical Patch Update (CPUAPR2018)


Thank you in advance.

 

I don't mean to be disrespectful in any way when I ask this, but why are you looking at this if you don't have the technical know-how to resolve these issues? These issues, by their very nature, require technical knowledge, and trying to cobble something together may actually wreak havoc with your website.