Website scanner for JavaScript vulnerabilities and security headers

https://technologiate.com/greenshot-best-free-screenshot-software/

Full report

See on WebPageTest

Scan time

7/9/2020
7:24:45 AM

Webpage Security Score

F

A+ is the best score you can get.
Learn more about this score.
Fix JavaScript vulnerabilities in your project with Snyk (or try the free & open source CLI) Test and protect my website

JavaScript Libraries with vulnerabilities

The following list of JavaScript libraries were found to contain known and public security vulnerabilities.
Note: We identified this as a WordPress website. If not kept up to date, JavaScript security vulnerabilities may put your website and users at risk.

Monitor my WordPress project

Security headers

HTTP security headers enable better browser security policies.

Vulnerable library Vulnerable version detected
  • M
jquery
1.12.4

New vulnerabilities are continuously found for jQuery, lodash, Angular and other libraries.
Monitor these libraries to protect your web application.

Stay up to date on CVEs by connecting your project to Snyk to receive automated notifications & fixes.
The following security headers are missing from the website:
high severity

Strict Transport Security

A HSTS Policy informing the HTTP client how long to cache the HTTPS only policy and whether this applies to subdomains.

low severity

X Content Type Options

The only defined value, "nosniff", prevents Internet Explorer from MIME-sniffing a response away from the declared content-type. This also applies to Google Chrome, when downloading extensions

medium severity

X Frame Options

Clickjacking protection: deny - no rendering within a frame, sameorigin - no rendering if origin mismatch, allow-from - allow from specified location, allowall - non-standard, allow from any location

high severity

Content Security Policy

A computer security standard introduced to prevent cross-site scripting (XSS), clickjacking and other code injection attacks resulting from execution of malicious content in the trusted web page context

low severity

X XSS Protection

A Cross-site scripting filter