blueshostel.pl

HTML metadata

Technology

CMS

WordPress 5.5.1 legacy (latest 7.0)

jQuery

1.12.4 known XSS (<3.5)

Fonts

• Google Fonts

Third-party hosts loaded (6)

• ajax.googleapis.com×1
• fonts.googleapis.com×1
• fonts.gstatic.com×1
• maps.googleapis.com×1
• s.w.org×1
• www.google.com×1

Social

• facebook
• twitter

Contact

Phone

• +48 511 177 499

DNS records live

NS

• dns1.anyservers.com
• dns2.anyservers.com

MX

• 0 blueshostel.pl

Email authentication weak

SPF

v=spf1 ip4:77.79.239.194 include:anyservers.com +a +mx +ip4:85.232.242.130 +ip4:85.232.242.131 +include:srv1.anyservers.com +include:srv2.anyservers.com +include:srv3.anyservers.com +include:srv3a.anyservers.com +include:srv3b.anyservers.com ~all

softfail (~all)

DMARC

not published

DKIM

• default: v=DKIM1; k=rsa; p=MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAomizMO8NJMdcvyVV+KLtt6pyZyU89B6Cczp2DH3pHjJNmAEynJVYrT9uvpdb7d5Fl+O2VKsA3mDAAs…

selectors probed

Certificate (current)

Full certificate history on crt.sh ↗

HTTP security headers

Header hygiene 30/100 Checked live page: https://blueshostel.pl/

findings

• missing HSTS
• missing Content Security Policy
• missing frame protection
• missing content type protection
• missing Referrer Policy
• missing Permissions Policy

Links to (8)

• wordpress.org×1
• woes.pl×1
• vismedia.com.pl×1
• twitter.com×1
• holistic.org.pl×1
• google.com×1
• facebook.com×1
• bueshostel.pl×1

Linked from (2)

• kzkwb.konin.pl×1
• lotmarina.pl×1