Website Security Test of ants.ge

Executive Summary for ants.ge

• Web Software Security Test
  13 third-party web software dependancies were identified, including 9 outdated dependancies. No known vulnerabilities were detected. 4 identified third-party web software dependancies have unknown versions. The identified CMS (WordPress) appears to be up to date. The following CMS components, JS-libraries or frameworks were identified: Contact Form 7, All-in-One WP Migration, Contact Form 7 Database Addon – CFDB7, and others. Show details.
• GDPR Compliance Test
  No obvious GDPR-related compliance issues were detected across Privacy Policy, Website Security, TLS Encryption, Cookie Protection, Cookie Disclaimer. The following checks were not performed, as no corresponding cookies with personal or tracking information seem to be sent by the website: Cookie Protection, Cookie Disclaimer. Show details.
• PCI DSS Compliance Test
  The website is compliant with PCI DSS Requirement 6.3, while being non-compliant with Requirement 6.4. Show details.
• HTTP Headers Security Test
  Issues were identified with key security header missing Content-Security-Policy. Optional HTTP header appears to be properly configured: Server. Deprecated HTTP headers detected: X-XSS-Protection. Show details.
• Content Security Policy (CSP) Test
  Content-Security-Policy headers are not present. Show details.
• Cookies Privacy and Security Test
  No cookies were detected. Show details.
• External Content Security Test
  18 external requests detected; 2 requests failed. SRI is implemented for 1 out of 12 third-party JavaScript and CSS files. Show details.
• Protection from Data Scraping Test
  No significant anti-scraping protections were detected. Show details.
• DNSSEC Configuration Test
  7 DNS A records detected; DNSSEC signatures are not present. Show details.