rubinetteriagst.it

HTML metadata

Technology

CMS

Drupal

PHP

7.1.33 end of life

jQuery

2.2.4 known XSS (<3.5)

Third-party hosts loaded (4)

• maxcdn.bootstrapcdn.com×3
• code.jquery.com×2
• cdnjs.cloudflare.com×1
• tridella.indooe.it×1

DNS records live

NS

• dns1.netsons.net
• dns2.netsons.net
• dns3.netsons.net
• dns4.netsons.net

MX

• 0 mail.rubinetteriagst.it

Email authentication weak

SPF

v=spf1 +a +mx ~all

softfail (~all)

DMARC

not published

DKIM

• default: v=DKIM1; k=rsa; p=MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA2y2t2ePo1ORm/6YFj92mZCi2gkJQa4/g2tGb+0lOPNyFwURCIv3yVoncydDx81g6UGEjpT/A/X82YV…

selectors probed

Certificate (current)

Full certificate history on crt.sh ↗

HTTP security headers

Header hygiene 40/100 Checked live page: https://www.rubinetteriagst.it/

present

• x-content-type-options

findings

• missing HSTS
• missing Content Security Policy
• missing frame protection
• missing Referrer Policy
• missing Permissions Policy

Links to (1)

• tridellagst.it×1

Linked from (1)

• tridellagst.it×1