Website Security Test of evixkeys.com

Executive Summary for evixkeys.com

• Web Software Security Test
  5 third-party web software dependancies were identified, including 3 outdated dependancies. No known vulnerabilities were detected. One identified third-party web software dependancy has an unknown version. The identified CMS (The Roundcube Webmail) appears to be up to date. The following CMS components, JS-libraries or frameworks were identified: jquery, jquery-ui, bootstrap, and others. Show details.
• GDPR Compliance Test
  Potential GDPR compliance issues were identified related to Privacy Policy. Show details.
• PCI DSS Compliance Test
  The website is compliant with PCI DSS Requirement 6.3, while being non-compliant with Requirement 6.4. Show details.
• HTTP Headers Security Test
  Issues were identified with key security headers: missing Strict-Transport-Security, Content-Security-Policy, X-Content-Type-Options. An optional HTTP header may not be properly configured: Report-To. Show details.
• Content Security Policy (CSP) Test
  Content-Security-Policy headers are not present. Show details.
• Cookies Privacy and Security Test
  One cookie detected; roundcube_sessid has security or privacy-related configuration issues. Show details.
• External Content Security Test
  One external request detected; the request completed successfully. SRI is correctly implemented for one third-party JavaScript or CSS file. Show details.
• Protection from Data Scraping Test
  No significant anti-scraping protections were detected. Additional anti-scraping protection appears to be provided by external infrastructure. Show details.
• DNSSEC Configuration Test
  DNS A record detected; DNSSEC signatures are not present. Show details.