Summary of nextdoor.com [Mobile version] Website Security Test
Provided "as is" without any warranty of any kind.
Date/Time:Apr 4th, 2025 16:22 GMT+0
Server IP:3.161.213.16
Reverse DNS:server-3-161-213-16.yul62.r.cloudfront.net
Location:N/A, United States
Version:for iPhone 6
Your final score:
- A
- B
- C
- F
A
This test was made 362 days ago and may be outdated
Refresh Test
Executive Summary for nextdoor.com
- 6 third-party web software dependancies were identified. All appear to be outdated, but no known vulnerabilities were detected. One identified third-party web software dependancy has an unknown version. No Content Management System (CMS) was identified. The following CMS components, JS-libraries or frameworks were identified: lit-element, lit-html, core-js, and others. Show details.
- No obvious GDPR-related compliance issues were detected across Privacy Policy, Website Security, TLS Encryption, Cookie Protection, Cookie Disclaimer. Show details.
- The website is compliant with PCI DSS Requirement 6.3, while being non-compliant with Requirement 6.4. Show details.
- Issues were identified with key security headers: misconfigured Strict-Transport-Security, Content-Security-Policy. Optional HTTP headers appear to be properly configured: Server, Referrer-Policy, Cache-Control, X-Permitted-Cross-Domain-Policies. Deprecated HTTP headers detected: X-XSS-Protection. Show details.
- Content-Security-Policy is enforced but configuration issues were identified: directive errors. A report-only Content-Security-Policy is not present. Show details.
- 4 cookies detected; csrftoken, WE, DAID, ADID have security or privacy-related configuration issues. Show details.
- 68 external requests detected; 2 requests failed. SRI is implemented for 1 out of 32 third-party JavaScript and CSS files. Show details.
- No significant anti-scraping protections were detected. Show details.
- 4 DNS A records detected; DNSSEC signatures are not present. Show details.
