Is this website unsafe?

See: https://sitecheck.sucuri.net/results/casperhq.org Not detected…
Retirable jQuery code: Retire.js
jquery 1.7.2.min Found in -https://code.jquery.com/jquery-1.7.2.min.js
Vulnerability info:
Medium CVE-2012-6708 11290 Selector interpreted as HTML
Medium 2432 3rd party CORS request may execute CVE-2015-9251
Low CVE-2019-11358 jQuery before 3.4.0, as used in Drupal, Backdrop CMS, and other products, mishandles jQuery.extend(true, {}, …) because of Object.prototype pollution

DOM-XSS flaws: Results from scanning URL: -http://casperhq.org/js/retina.js
Number of sources found: 51
Number of sinks found: 6
&
Results from scanning URL: -http://casperhq.org/js/retina.js
Number of sources found: 38
Number of sinks found: 21

Insecure connection - > https://toolbar.netcraft.com/site_report?url=http%3A%2F%2Fcasperhq.org%2F
See: https://www.virustotal.com/gui/ip-address/104.31.84.174
→ various detections: https://www.virustotal.com/gui/ip-address/104.31.84.174/relations
See: https://aw-snap.info/file-viewer/?protocol=not-secure&ref_sel=GSP2&ua_sel=ff&chk-cache=&fs=1&tgt=XnxzcHt9aHEuXX1n~enc

See F-grade results here: https://observatory.mozilla.org/analyze/casperhq.org

A, A+, F, missing → https://observatory.mozilla.org/analyze/casperhq.org#third-party

Website is insecure by default
100% of the trackers on this site could be protecting you from NSA snooping. Tell -casperhq.org to fix it.

Identifiers | All Trackers
Insecure Identifiers
Unique IDs about your web browsing habits have been insecurely sent to third parties.

d92b56bce2afd9fa4bXXXXXXXXXX10f6d1574770720 casperhq.org __cfduid

Tracking IDs could be sent safely if this site was secure.

Host details, see: https://www.shodan.io/host/104.31.85.174

polonus (volunteer 3rd party cold recon website security analyst and website error-hunter)

Another site that should be blocked a.s.a.p. (launching emotet and other malware), see:
https://aw-snap.info/file-viewer/?protocol=secure&ref_sel=GSP2&ua_sel=ff&chk-cache=&fs=1&tgt=dGh7Z1tdW158ZnsuW25mXQ%3D%3D~enc

For detections: https://www.virustotal.com/gui/ip-address/112.78.11.20/relations

Potential vulnerabilities on hoster: https://www.shodan.io/host/112.78.11.20

Website blacklisted with server and script errors by Bitdefender & Dr. Web’s.
CMW-JS-90222-js.redirect.inj…body>eval(('if(/(google|yahoo|bin…

On that php script injection: https://wordpress.stackexchange.com/questions/281611/what-is-this-code-in-my-themes-functions-php-if-isset-requestaction - Malicious code will create SPAM-URL’s.

Redirects: (malicious) -thegioicafe.info » -texashope.online/index.php?main_page=produc… » -www.yahoo.co.jp
Desktop Browser, SE Redirect
(malicious) -thegioicafe.info » -texashope.online/index.php?main_page=produc… » -www.yahoo.co.jp
Mobile Browser, SE Redirect

IP / NS Servers
-112.78.11.20 / NS: -ns1.dotvndns.vn, -ns3.dotvndns.vn, -nsbak.dotvndns.com, -ns2.dotvndns.vn, -mail.thegioicafe.info

pol