Hi NTSS,
Website is no longer being flagged by Avast. Just pay attention to these retirable libraries: Retire.js
jquery 3.4.1.min Found in -https://fearlessrevolution.com/assets/javascript/jquery-3.4.1.min.js?assets_version=320 _____Vulnerability info:
Medium CVE-2020-11022 4642 Regex in its jQuery.htmlPrefilter sometimes may introduce XSS GHSA-gxr4-xjj5-5px2
Medium CVE-2020-11023 CVE-2020-23064 4647 passing HTML containing <option> elements from untrusted sources - even after sanitizing it - to one of jQuery's DOM manipulation methods (i.e. .html(), .append(), and others) may execute untrusted code. GHSA-jpcq-cgw6-v4j6 Medium vulnerability score. One header missing - strict-origin-when-cross-origin
Risks found = 0.
Technologies - Technologies · 12 identified
Technologies found on the scanned URL, using open source definitions provided by Wappalyzer
Analytics · 2 identified
Icon
Name
Description
Website
Google Analytics logo Google Analytics Google Analytics is a free web analytics service that tracks and reports website traffic.
-https://google.com/analytics
Cloudflare Browser Insights logo Cloudflare Browser Insights Cloudflare Browser Insights is a tool that measures the performance of websites from the perspective of users. -https://www.cloudflare.com
CDN · 3 identified
Icon
Name
Description
Website
Unpkg logo Unpkg Unpkg is a content delivery network for everything on npm. -https://unpkg.com
Google Hosted Libraries logo Google Hosted Libraries Google Hosted Libraries is a stable, reliable, high-speed, globally available content distribution network for the most popular, open-source JavaScript libraries. -https://developers.google.com/speed/libraries
Cloudflare logo Cloudflare Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services. -https://www.cloudflare.com
Font scripts · 1 identified
Icon
Name
Description
Website
Google Font API logo Google Font API Google Font API is a web service that supports open-source font files that can be used on your web designs. -https://google.com/fonts
JavaScript libraries · 1 identified
Icon
Name
Description
Website
jQuery logo jQuery jQuery is a JavaScript library which is a free, open-source software designed to simplify HTML DOM tree traversal and manipulation, as well as event handling, CSS animation, and Ajax. -https://jquery.com
Message boards · 1 identified
Icon
Name
Description
Website
phpBB logo phpBB phpBB is a free open-source Internet forum package in the PHP scripting language. -https://phpbb.com
Miscellaneous · 1 identified
Icon
Name
Description
Website
HTTP/3 logo HTTP/3 HTTP/3 is the third major version of the Hypertext Transfer Protocol used to exchange information on the World Wide Web. -https://httpwg.org/
PaaS · 1 identified
Icon
Name
Description
Website
Amazon Web Services logo Amazon Web Services Amazon Web Services (AWS) is a comprehensive cloud services platform offering compute power, database storage, content delivery and other functionality. -https://aws.amazon.com/
Programming languages · 1 identified
Icon
Name
Description
Website
PHP logo PHP PHP is a general-purpose scripting language used for web development. -https://php.net
RUM · 1 identified
Icon
Name
Description
Website
Cloudflare Browser Insights logo Cloudflare Browser Insights Cloudflare Browser Insights is a tool that measures the performance of websites from the perspective of users. -https://www.cloudflare.com
A.I. related assistence, declares - HTTP Transactions:
The website is using a mix of third-party libraries and resources, including jQuery, Font Awesome, and Cookie Consent.
There are 10 HTTP requests made to the website, which seems to be a relatively small number.
The website is serving various stylesheets (CSS files) from different sources, including Font Awesome and SimpleSpoiler.
The website is using a CDN for some resources (e.g., yeIDrhaKCesd6qFvaXC9ry202dE.js).
DNS Records:
There are 4 DNS records found for the domain fearlessrevolution.com.
The records show that the domain is associated with two IP addresses (172.66.42.223 and 172.66.41.33) and two AAAA records (2606:4700:3108::ac42:2adf and 2606:4700:3108::ac42:2921).
All DNS records indicate that DNSSEC is disabled.
Vulnerability Score:
Based on this information, I would rate the vulnerability score as "Low to Medium". The website appears to be using some outdated libraries (e.g., jQuery 3.4.1), which may be vulnerable to certain exploits. However, there are no obvious indicators of severe vulnerabilities or malicious activity in the provided data. It's recommended to regularly update dependencies and monitor the website for potential security issues.
See qualifications ->
https://radar.cloudflare.com/scan/f984a1f1-27d9-4512-897d-908475594bf9/summaryI.m.h.o. you are good to go,
P.S. Hosting vulners to reckon with:
https://www.shodan.io/host/172.66.41.33 However, running an older version of PHP may increase the risk of vulnerabilities.
polonus