The following webpage has outdated Word Press software and does not comply with EU cookie law:
https://www.cookiemetrix.com/display-report/medicoversenior.pl/a466bc686d91403a0008b0ceb7094ae2https://urlquery.net/report/c51cdd97-8569-4830-aea5-06fe0a76ad9bDOM-XSS issues: Results from scanning URL: -https://medicoversenior.pl/wp-content/plugins/responsive-lightbox/js/front.js?ver=2.1.0
Number of sources found: 41
Number of sinks found: 17
bootstrap 3.1.1 Found in -https://medicoversenior.pl/wp-content/themes/startuply-clean/js/lib/bootstrap.min.js?ver=5.2.2
Vulnerability info:
High 28236 XSS in data-template, data-content and data-title properties of tooltip/popover CVE-2019-8331
Medium 20184 XSS in data-target property of scrollspy CVE-2018-14041
Medium 20184 XSS in collapse data-parent attribute CVE-2018-14040
Medium 20184 XSS in data-container property of tooltip CVE-2018-14042
jquery 1.12.4 Found in -https://medicoversenior.pl/wp-includes/js/jquery/jquery.js?ver=1.12.4-wp
Vulnerability info:
Medium 2432 3rd party CORS request may execute CVE-2015-9251
Medium CVE-2015-9251 11974 parseHTML() executes scripts in event handlers
Medium CVE-2019-11358 jQuery before 3.4.0, as used in Drupal, Backdrop CMS, and other products, mishandles jQuery.extend(true, {}, ...) because of Object.prototype pollution 123
jquery 1.4.2 Found in -https://ajax.googleapis.com/ajax/libs/jquery/1.4.2/jquery.min.js
Vulnerability info:
Medium CVE-2011-4969 XSS with location.hash
Medium CVE-2012-6708 11290 Selector interpreted as HTML
Medium 2432 3rd party CORS request may execute CVE-2015-9251
Medium CVE-2019-11358 jQuery before 3.4.0, as used in Drupal, Backdrop CMS, and other products, mishandles jQuery.extend(true, {}, ...) because of Object.prototype pollution
618 linting recommendations:
https://webhint.io/scanner/f99c6e20-25b0-4518-91d7-ff8d64fc107fpolonus (volunteer 3rd party cold recon website security analyst and website error-hunter)