cmpusa.org

HTML metadata

Technology

CDN

Cloudflare

CMS

WordPress 7.0

PHP

8.1.34 end of life

Third-party hosts loaded (2)

• assets.swarmcdn.com×2
• gmpg.org×1

DNS records live

NS

• cash.ns.cloudflare.com
• michelle.ns.cloudflare.com

MX

• 20 cmpusa-org.mail.protection.outlook.com

Verified for

• Brevo
• Google
• Microsoft 365
• Zoho

Email authentication partial

SPF

v=spf1 include:spf.protection.outlook.com include:mailgun.org include:spf.sendinblue.com include:one.zoho.com -all

strict (-all)

DMARC

v=DMARC1; p=none

policy: none (monitoring only)

DKIM

• selector1: v=DKIM1; k=rsa; p=MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAuE/zbYCM7mC1zLerL0hdEn0YntyLrkpgFEXGwjniazCAhJs7ljT0VbiKCUM/xz62qI/gtrlvt7nvh9…
• selector2: v=DKIM1; k=rsa; p=MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAt0fg12xhVp3y6aTq5qqF2J7akrZywt8c7SbSDEAU91rkaHlV+bvtM99/puon9NenIGuLZk0qmYCsZp…
• mail: k=rsa;p=MIGfMA0GCSqGSIb3DQEBAQUAA4GNADCBiQKBgQDeMVIzrCa3T14JsNY0IRv5/2V1/v2itlviLQBwXsa7shBD6TrBkswsFUToPyMRWC9tbR/5ey0nRBH0ZVxp+lsmTxid2Y2z…

selectors probed

Certificate (current)

Full certificate history on crt.sh ↗

HTTP security headers

Header hygiene 30/100 Checked live page: https://www.cmpusa.org/

findings

• missing HSTS
• missing Content Security Policy
• missing frame protection
• missing content type protection
• missing Referrer Policy
• missing Permissions Policy

Links to (3)

• hometownhero.org×1
• complete360.app×1
• annusa.org×1

Linked from (2)

• complete360.org×1
• theardentteacher.com×1