oeffentlichespersonal.ch

HTML metadata

Technology

Server

Apache

CMS

WordPress 6.2.9

jQuery

3.2.1 known XSS (<3.5)

Analytics

• Google Tag Manager

Fonts

• Adobe Fonts

Third-party hosts loaded (6)

• www.googletagmanager.com×2
• cdnjs.cloudflare.com×1
• code.jquery.com×1
• gmpg.org×1
• kombi.jobs.ch×1
• use.typekit.net×1

Contact

Email

• redaktion@oeffentlichespersonal.ch

Phone

• +41 56 200 07 99

DNS records live

NS

• ns.hostpoint.ch
• ns2.hostpoint.ch
• ns3.hostpoint.ch

MX

• 10 mx1.mail.hostpoint.ch
• 10 mx2.mail.hostpoint.ch

TXT

• mx-a78a9233668aac15

Email authentication weak

SPF

v=spf1 include:mailservers.webling.ch redirect=spf.mail.hostpoint.ch

missing all

DMARC

v=DMARC1;p=none;

policy: none (monitoring only)

DKIM

• s1: k=rsa; t=s; p=MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAzgy0fccX7/M49HPsST1rmamiuyuutVgY/7tM9Ri/GN6hSJ4tSJL7MnzY8/Cti2q9/647cDaiWeg5qjnuJD…
• s2: k=rsa; t=s; p=MIGfMA0GCSqGSIb3DQEBAQUAA4GNADCBiQKBgQDGC785VVciS8lJhwt09Sbcwe/R+/kW3sPLzPA4FvSXx3220ZEo1t9jsad/lMueOcEzfKqK5eJSbPBliLED5Gf1La…

selectors probed

Certificate (current)

Full certificate history on crt.sh ↗

HTTP security headers

Header hygiene 30/100 Checked live page: https://oeffentlichespersonal.ch/

findings

• missing HSTS
• missing Content Security Policy
• missing frame protection
• missing content type protection
• missing Referrer Policy
• missing Permissions Policy

Links to (1)

• google.com×1

Linked from (9)

• architektur-technik.ch×1
• pk-netz.ch×1
• tir-transnews.ch×1
• m-q.ch×1
• organisator.ch×1
• forum-securite.ch×1
• traumhaus.ch×1
• fachbau.ch×1
• immobilienbusiness.ch×1