Website Security Test of allgentech.io

Executive Summary for allgentech.io

• Web Software Security Test
  16 third-party web software dependancies were identified, including 8 outdated dependancies. A total of 7 known vulnerabilities were detected. 4 identified third-party web software dependancies have unknown versions. The CMS (WordPress) was identified, however, its version could not be determined. The following CMS components, JS-libraries or frameworks were identified: bootstrap, Elements kit Elementor addons (Header & Footer Builder, Mega Menu Builder, Layout Library), Elementor Page Builder, and others. Show details.
• GDPR Compliance Test
  Potential GDPR compliance issues were identified related to Privacy Policy, Website Security. The following checks were not performed, as no corresponding cookies with personal or tracking information seem to be sent by the website: Cookie Protection, Cookie Disclaimer. Show details.
• PCI DSS Compliance Test
  Potential PCI DSS compliance issues were identified related to Requirements 6.3 and 6.4. Show details.
• HTTP Headers Security Test
  Issues were identified with key security headers: missing Strict-Transport-Security, X-Content-Type-Options, X-Frame-Options; misconfigured Content-Security-Policy. An optional HTTP header may not be properly configured: X-Powered-By. Show details.
• Content Security Policy (CSP) Test
  Content-Security-Policy is enforced but configuration issues were identified: directive errors. A report-only Content-Security-Policy is not present. Show details.
• Cookies Privacy and Security Test
  No cookies were detected. Show details.
• External Content Security Test
  10 external requests detected; all requests completed successfully. SRI is not used for 4 third-party JavaScript and CSS files. Show details.
• Protection from Data Scraping Test
  No significant anti-scraping protections were detected. Show details.
• DNSSEC Configuration Test
  DNS A record detected; DNSSEC signatures are not present. Show details.