https://dossierfacile.fr

environ 10 heures

mtes

Copie d'écran de https://dossierfacile.fr

Nmap

Scan Summary :

A

severity	service	vulnerability
info	http (port:80)
info	https (port:443)

Consulter le rapport détaillé

Mozilla HTTP observatory

Scan Summary :

B

Impact	Description	Documentation
-20	Content Security Policy (CSP) implemented unsafely. This includes `'unsafe-inline'` or `data:` inside `script-src`, overly broad sources such as `https:` inside `object-src` or `script-src`, or not restricting the sources for `object-src` or `script-src`.	Remove `unsafe-inline` and `data:` from `script-src`, overly broad sources from `object-src` and `script-src`, and ensure `object-src` and `script-src` are set.
-5	Initial redirection from HTTP to HTTPS is to a different host, preventing HSTS.	Documentation for redirection-to-https

Rapport détaillé

SSL

Scan Summary :

A+

Expiration : 01/09/2025

Rapport détaillé

Scan OWASPenviron 10 heures

risk	name
Medium (High)	CSP: Failure to Define Directive with No Fallback
Medium (High)	CSP: script-src unsafe-eval
Medium (High)	CSP: script-src unsafe-inline
Medium (High)	CSP: style-src unsafe-inline
Low (Medium)	Insufficient Site Isolation Against Spectre Vulnerability
Low (Medium)	Permissions Policy Header Not Set
Informational (High)	Sec-Fetch-Dest Header is Missing
Informational (High)	Sec-Fetch-Mode Header is Missing
Informational (High)	Sec-Fetch-Site Header is Missing
Informational (High)	Sec-Fetch-User Header is Missing
Informational (Medium)	Base64 Disclosure
Informational (Medium)	Modern Web Application
Informational (Medium)	Storable and Cacheable Content
Informational (Low)	Re-examine Cache-control Directives

Rapport détaillé