Single scan results


Total score
Scan date:2020-03-18 17:21:54
Alerts: 1878
AlertRisk level
Cross-Domain Misconfiguration
Cookie Without Secure Flag
Server Leaks Information via "X-Powered-By" HTTP Response Header Field(s)
Web Browser XSS Protection Not Enabled
Content-Type Header Missing
Cookie Without SameSite Attribute
CSP Scanner: Wildcard Directive
Loosely Scoped Cookie
Cookie No HttpOnly Flag
Absence of Anti-CSRF Tokens
Cross-Domain JavaScript Source File Inclusion
CSP Scanner: Notices
Incomplete or No Cache-control and Pragma HTTP Header Set
Timestamp Disclosure - Unix
Information Disclosure - Suspicious Comments
Multiple X-Frame-Options Header Entries
X-Content-Type-Options Header Missing
Charset Mismatch (Header Versus Meta Content-Type Charset)

What now?

Far below average Some essential security features are available, but there is room for improvement. Shopping or giving out personal details on this site is unadvisable.

Get the full report  Scan another website


This is an automated verification for

If you have comments, don't agree with the results or want to submit a site for manual examination, don't hesitate to contact us.