Summary of blossom.co [Desktop version] Website Security Test
Provided "as is" without any warranty of any kind.
Date/Time:Mar 15th, 2021 19:55 GMT+0
Server IP:172.64.81.87
Reverse DNS:-
Location:San Francisco, United States
Version:for desktop
Your final score:
- A
- B
- C
- F
C+
This test was made 1845 days ago and may be outdated
Refresh Test
The website is using resources from third-party domains that cannot be resolved.
Misconfiguration or weakness
Executive Summary for blossom.co
- 5 third-party web software dependancies were identified, including 3 outdated dependancies. No known vulnerabilities were detected. 2 identified third-party web software dependancies have unknown versions. The identified CMS (WordPress) appears to be up to date. The following CMS components, JS-libraries or frameworks were identified: jquery-ui, jquery, jQuery Popup Overlay, and others. Software fingerprinting may be restricted by the system, so the results could be incomplete. Show details.
- No obvious GDPR-related compliance issues were detected across Privacy Policy, Website Security, TLS Encryption, Cookie Protection, Cookie Disclaimer. Website Security check may be incomplete due to a scanning timeout. Show details.
- Issues were identified with key security headers: missing Content-Security-Policy, X-Frame-Options. Optional HTTP headers appear to be properly configured: Server, Expect-CT. Deprecated HTTP headers detected: Public-Key-Pins, Public-Key-Pins-Report-Only, X-XSS-Protection. Show details.
- Content-Security-Policy headers are not present. Show details.
- One detected cookie appears to be properly configured from a security perspective. Show details.
- 46 external requests detected; 4 requests failed. Show details.
- No significant anti-scraping protections were detected. Show details.
