Website Security Test of trans-tema.org

Executive Summary for trans-tema.org

• Web Software Security Test
  2 third-party web software dependancies were identified. None appear to be outdated, and no known vulnerabilities were detected. No Content Management System (CMS) was identified. The following CMS components, JS-libraries or frameworks were identified: jquery, webfontloader. Software fingerprinting may be restricted by the system, so the results could be incomplete. Show details.
• GDPR Compliance Test
  Potential GDPR compliance issues were identified related to Cookie Disclaimer. Website Security check may be incomplete because fingerprinting attempts appear to be blocked. Show details.
• PCI DSS Compliance Test
  The website is non-compliant with PCI DSS Requirement 6.4. The assessment of PCI DSS Requirement 6.3 may be incomplete due to limited software fingerprinting. Show details.
• HTTP Headers Security Test
  Issues were identified with key security header missing Content-Security-Policy. An optional HTTP header may not be properly configured: Report-To. Deprecated HTTP headers detected: X-XSS-Protection. Show details.
• Content Security Policy (CSP) Test
  Content-Security-Policy headers are not present. Show details.
• Cookies Privacy and Security Test
  3 cookies detected; phpbb3_l4lum_u, phpbb3_l4lum_k, phpbb3_l4lum_sid have security or privacy-related configuration issues. Show details.
• External Content Security Test
  15 external requests detected; all requests completed successfully. SRI is implemented for 1 out of 5 third-party JavaScript and CSS files. Show details.
• Protection from Data Scraping Test
  No significant anti-scraping protections were detected. Show details.
• DNSSEC Configuration Test
  DNS A record detected; DNSSEC signatures are present and fully validated. Show details.