Summary of www.ikea.com [Desktop version] Website Security Test
Provided "as is" without any warranty of any kind.
Date/Time:Feb 8th, 2025 21:24 GMT+0
Server IP:23.223.217.249
Reverse DNS:a23-223-217-249.deploy.static.akamaitechnologies.com
Location:Montreal, Canada
Version:for desktop
Your final score:
- A
- B
- C
- F
A
This test was made 417 days ago and may be outdated
Refresh Test
Executive Summary for www.ikea.com
- 5 third-party web software dependancies were identified, including 4 outdated dependancies. No known vulnerabilities were detected. 2 identified third-party web software dependancies have unknown versions. The identified CMS (LEPTON CMS) appears to be up to date. The following CMS components, JS-libraries or frameworks were identified: preact, core-js, ua-parser-js, and others. Show details.
- Potential GDPR compliance issues were identified related to Cookie Protection. Show details.
- No obvious PCI DSS compliance issues were detected for Requirements 6.3 and 6.4. Show details.
- Issues were identified with key security headers: missing X-Frame-Options; misconfigured Content-Security-Policy. Optional HTTP headers appear to be properly configured: Server, Permissions-Policy. Show details.
- Content-Security-Policy is enforced but configuration issues were identified: directive errors, overly permissive directives, deprecated directives. A report-only Content-Security-Policy is not present. Show details.
- 4 cookies detected; ikea_geo, ikexp_id, _abck, bm_sz have security or privacy-related configuration issues. Show details.
- 17 external requests detected; 2 requests failed. SRI is not used for 8 third-party JavaScript and CSS files. Show details.
- No significant anti-scraping protections were detected. Show details.
- DNS CNAME record detected; DNSSEC signatures are present and fully validated. Show details.
