See: http://toolbar.netcraft.com/site_report?url=http://durbanwebsitedesigns.co.za
Reverse DNS and nameserver vulnerable to DROWn: https://test.drownattack.com/?site=srv14.hostserv.co.za
Retirable jQuery libraries:
-http://www.durbanwebsitedesigns.co.za
Detected libraries:
jquery - 1.11.1 : (active1) -http://www.durbanwebsitedesigns.co.za/media/jui/js/jquery.min.js
Info: Severity: medium
https://github.com/jquery/jquery/issues/2432
http://blog.jquery.com/2016/01/08/jquery-2-2-and-1-12-released/
jquery-migrate - 1.2.1 : -http://www.durbanwebsitedesigns.co.za/media/jui/js/jquery-migrate.min.js
Info: Severity: medium
http://bugs.jquery.com/ticket/11290
http://research.insecurelabs.org/jquery/test/
jquery.prettyPhoto - 3.1.4 : (active1)
-http://www.durbanwebsitedesigns.co.za/templates/kallyas/addons/prettyphoto/jquery.prettyPhoto.js
Info: Severity: high
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2013-6837&cid=3
Info: Severity: high
https://github.com/scaron/prettyphoto/issues/149
https://blog.anantshri.info/forgotten_disclosure_dom_xss_prettyphoto
(active) - the library was also found to be active by running code
3 vulnerable libraries detected
Security report F-Status: https://securityheaders.io/?q=http%3A%2F%2Fdurbanwebsitedesigns.co.za
Google Safer Chrome alert: Website Design Durban | Harmony Designs | Balliā¦ padlock
-durbanwebsitedesigns.co.za
Alerts (2)
Insecure login (2)
Password will be transmited in clear to -http://durbanwebsitedesigns.co.za/index.php
Password will be transmited in clear to -http://durbanwebsitedesigns.co.za/index.php/component/users/
Infos (1)
Encryption (HTTPS) (1)
Communication is NOT encrypted
IDS Tracking Insecurity:
25% of the trackers on this site could be protecting you from NSA snooping. Tell -durbanwebsitedesigns.co.za to fix it.
All trackers
At least 4 third parties know you are on this webpage.
-shaaaaaaaaaaaaa.com
-www.durbanwebsitedesigns.co.za
-durbanwebsitedesigns.co.za
-fonts.gstatic.com -Google
polonus (volunteer website security analyst and website error/hunter)