Website Security Test of moflix-stream.xyz

Executive Summary for moflix-stream.xyz

• Web Software Security Test
  One third-party web software dependancy was identified. It appears to be outdated, but no known vulnerabilities were detected. No Content Management System (CMS) was identified. Software fingerprinting may be restricted by the system, so the results could be incomplete. Show details.
• GDPR Compliance Test
  Potential GDPR compliance issues were identified related to Cookie Protection. Website Security check may be incomplete because fingerprinting attempts appear to be blocked. Show details.
• PCI DSS Compliance Test
  The website is compliant with PCI DSS Requirement 6.4. The assessment of PCI DSS Requirement 6.3 may be incomplete due to limited software fingerprinting. Show details.
• HTTP Headers Security Test
  Issues were identified with key security header missing Content-Security-Policy. Some optional HTTP headers may not be properly configured: Report-To, Expect-CT. Deprecated HTTP headers detected: X-XSS-Protection. Show details.
• Content Security Policy (CSP) Test
  Content-Security-Policy headers are not present. Show details.
• Cookies Privacy and Security Test
  2 cookies detected; XSRF-TOKEN, moflix_stream_session have security or privacy-related configuration issues. Show details.
• External Content Security Test
  29 external requests detected; 1 request failed. SRI is implemented for 1 out of 4 third-party JavaScript and CSS files. Show details.
• Protection from Data Scraping Test
  6 robots.txt rules, 9 User-Agent blocks and 8 bot protection mechanisms detected. No protection detected via meta restrictions. Additional anti-scraping protection appears to be provided by external infrastructure. Show details.
• DNSSEC Configuration Test
  DNS A record detected; DNSSEC signatures are present and fully validated. Show details.