blog.softwing.de Website Security Test

Summary of blog.softwing.de [Desktop version] Website Security Test

Provided "as is" without any warranty of any kind.

Date/Time:May 19th, 2026 16:04 GMT+0

Server IP:217.160.0.248

Reverse DNS:217-160-0-248.elastic-ssl.ui-r.com

Location:Kassel, Germany Germany

Version:for desktop

Your final score:

A
B
C
F

A

It appears that system is not responding or blocking software fingerprinting attempts, performed from the following IP ranges: 192.175.111.224/27, 64.15.129.96/27, 70.38.27.240/28, 72.55.136.144/28. Please whitelist them for successful continuation of the test.

Misconfiguration or weakness

Executive Summary for blog.softwing.de

Web Software Security Test
8 third-party web software dependancies were identified, including 3 outdated dependancies. No known vulnerabilities were detected. 4 identified third-party web software dependancies have unknown versions. The CMS (WordPress) was identified, however, its version could not be determined. The following CMS components, JS-libraries or frameworks were identified: Complianz | GDPR Cookie Consent, jquery, jquery-migrate, and others. Software fingerprinting may be restricted by the system, so the results could be incomplete. Show details.
GDPR Compliance Test
No obvious GDPR-related compliance issues were detected across Privacy Policy, Website Security, TLS Encryption, Cookie Protection, Cookie Disclaimer. Website Security check may be incomplete due to a scanning timeout. Show details.
PCI DSS Compliance Test
No obvious PCI DSS compliance issues were detected for Requirements 6.3 and 6.4. Show details.
HTTP Headers Security Test
Issues were identified with key security header misconfigured Content-Security-Policy. An optional HTTP header may not be properly configured: Access-Control-Allow-Origin. Deprecated HTTP headers detected: X-XSS-Protection. Show details.
Content Security Policy (CSP) Test
Content-Security-Policy is enforced but configuration issues were identified: directive errors, overly permissive directives, deprecated directives. A report-only Content-Security-Policy is not present. Show details.
Cookies Privacy and Security Test
No cookies were detected. Show details.
External Content Security Test
8 external requests detected; all requests completed successfully. SRI is not used for 3 third-party JavaScript and CSS files. Show details.
Protection from Data Scraping Test
1 robots.txt rule and 1 bot protection mechanism detected. No protection detected via User-Agent blocks or meta restrictions. Show details.
DNSSEC Configuration Test
DNS A record detected; DNSSEC signatures are present and fully validated. Show details.