← new scan
~/scans/docs.xquik.com.report
⇣ export pdf
target docs.xquik.com
resolved162.159.143.13
scanned 2026-07-18 10:01:24
modules 7 of 7 completed
// overall risk
HIGH Risk
11 issues across 7 modules — 2 high, 3 medium, 6 low
0 critical
2 high
3 medium
6 low
0 ok
01
WHOIS & DNS
DNS records retrieved — SPF & DMARC present
· LOW
02
SSL / TLS Certificate
Valid certificate, expires in 33 days — TLSv1.3
· LOW
03
CMS Detection
No CMS detected
OK
04
Security Headers
4 of 7 headers missing
HIGH
// raw output
HSTS ok (max-age=63072000)
CSP ok (worker-src * blob: data: 'unsafe-eval' ')
X-Frame-Options ok (DENY)
X-Content-Type-Options MISSING
Referrer-Policy MISSING
Permissions-Policy MISSING
Cross-Origin-Opener MISSING
// findings (9)
  • high X-Content-Type-Options missing — MIME-sniffing possible
  • medium Referrer-Policy missing — leaking referrer data to third parties
  • medium Permissions-Policy missing — browser features not restricted
  • · low Cross-Origin-Opener-Policy not set
  • ok X-Frame-Options is configured
  • ok Content-Security-Policy is configured
  • ok Strict-Transport-Security is configured
  • medium CSP weakness — no default-src or script-src — falls back to permissive defaults
  • · low No /.well-known/security.txt — researchers cannot find a contact for vulnerability reports
05
Raw HTTP Headers
HTTP/3 · 27 headers · cloudflare
OK
06
External JS Libraries
No external JS libraries detected
OK
07
Malware & Blocklists
Threats detected — 1 suspicious indicator(s)
MEDIUM
// end of report · docs.xquik.com · 2026-07-18 10:01:24 ↻ scan again