See:
https://sitecheck.sucuri.net/results/casperhq.org Not detected...
Retirable jQuery code: Retire.js
jquery 1.7.2.min Found in -https://code.jquery.com/jquery-1.7.2.min.js
Vulnerability info:
Medium CVE-2012-6708 11290 Selector interpreted as HTML
Medium 2432 3rd party CORS request may execute CVE-2015-9251
Low CVE-2019-11358 jQuery before 3.4.0, as used in Drupal, Backdrop CMS, and other products, mishandles jQuery.extend(true, {}, ...) because of Object.prototype pollution
DOM-XSS flaws: Results from scanning URL: -http://casperhq.org/js/retina.js
Number of sources found: 51
Number of sinks found: 6
&
Results from scanning URL: -http://casperhq.org/js/retina.js
Number of sources found: 38
Number of sinks found: 21
Insecure connection - >
https://toolbar.netcraft.com/site_report?url=http%3A%2F%2Fcasperhq.org%2FSee:
https://www.virustotal.com/gui/ip-address/104.31.84.174-> various detections:
https://www.virustotal.com/gui/ip-address/104.31.84.174/relationsSee:
https://aw-snap.info/file-viewer/?protocol=not-secure&ref_sel=GSP2&ua_sel=ff&chk-cache=&fs=1&tgt=XnxzcHt9aHEuXX1n~encSee F-grade results here:
https://observatory.mozilla.org/analyze/casperhq.orgA, A+, F, missing ->
https://observatory.mozilla.org/analyze/casperhq.org#third-partyWebsite is insecure by default
100% of the trackers on this site could be protecting you from NSA snooping. Tell -casperhq.org to fix it.
Identifiers | All Trackers
Insecure Identifiers
Unique IDs about your web browsing habits have been insecurely sent to third parties.
d92b56bce2afd9fa4bXXXXXXXXXX10f6d1574770720 casperhq.org __cfduid
Tracking IDs could be sent safely if this site was secure.
Host details, see:
https://www.shodan.io/host/104.31.85.174polonus (volunteer 3rd party cold recon website security analyst and website error-hunter)
