Website Security Test of exchangesumo.com

Executive Summary for exchangesumo.com

• Web Software Security Test
  3 third-party web software dependancies were identified, including 2 outdated dependancies. No known vulnerabilities were detected. One identified third-party web software dependancy has an unknown version. The identified CMS (WordPress) appears to be up to date. The following CMS components, JS-libraries or frameworks were identified: jquery, bootstrap. Software fingerprinting may be restricted by the system, so the results could be incomplete. Show details.
• GDPR Compliance Test
  Potential GDPR compliance issues were identified related to Cookie Protection. Website Security check may be incomplete because fingerprinting attempts appear to be blocked. Show details.
• PCI DSS Compliance Test
  The website is compliant with PCI DSS Requirement 6.4. The assessment of PCI DSS Requirement 6.3 may be incomplete due to limited software fingerprinting. Show details.
• HTTP Headers Security Test
  All key security headers are missing. An optional HTTP header may not be properly configured: X-Powered-By. Show details.
• Content Security Policy (CSP) Test
  Content-Security-Policy headers are not present. Show details.
• Cookies Privacy and Security Test
  18 cookies detected; PHPSESSID, vwlp_ltkey, country_iso, vwa-client, isAuth, userId, ZZexSumo-referral, ZZexSumo-first-visit, wordpress_test_cookie, vwa-uuid, vwa-ref, vwa-cashbacks, vwa-clicks, uxt_pg_featureFlags have security or privacy-related configuration issues. Show details.
• External Content Security Test
  270 external requests detected; 2 requests failed. SRI is not used for 36 third-party JavaScript and CSS files. Show details.
• Protection from Data Scraping Test
  No significant anti-scraping protections were detected. Show details.
• DNSSEC Configuration Test
  DNS A record detected; DNSSEC signatures are not present. Show details.