calstatefloral.org

HTML metadata

Technology

CDN

Cloudflare

CMS

WordPress 6.9.4

PHP

8.2.31 security-only

jQuery

3.7.1

Fonts

• Font Awesome
• Google Fonts

Third-party hosts loaded (4)

• fonts.googleapis.com×2
• use.fontawesome.com×2
• gmpg.org×1
• i.ibb.co.com×1

DNS records live

NS

• chase.ns.cloudflare.com
• mary.ns.cloudflare.com

MX

• 10 mx2-hosting.jellyfish.systems
• 20 mx3-hosting.jellyfish.systems
• 5 mx1-hosting.jellyfish.systems

Email authentication weak

SPF

v=spf1 +a +mx +ip4:63.250.38.151 include:spf.web-hosting.com ~all

softfail (~all)

DMARC

not published

DKIM

• default: v=DKIM1; k=rsa; p=MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA5grEMM6EhvgNURUFBlz9U7K9fLwQTo8Tby8hWSjxDzrJMlSsq3k2f3OiYHfqrVxXChFGqbCXpENp/j…

selectors probed

Certificate (current)

Full certificate history on crt.sh ↗

HTTP security headers

Header hygiene 30/100 Checked live page: https://www.calstatefloral.org/

findings

• missing HSTS
• missing Content Security Policy
• missing frame protection
• missing content type protection
• missing Referrer Policy
• missing Permissions Policy

Links to (7)

• villagevoice.com×1
• thefate.org×1
• ss-machines.com×1
• shawtechlighting.com×1
• sgbmortgages.co.uk×1
• outtheboxthemes.com×1
• indonesiacocopeat.com×1

Linked from (1)

• gf-ad.com×1