Various javascript errors like unexpected token and unexpected identifier,
DNS Rebinding Protection Script, Illegal Invocation (2), $ is not defined (PHP error),
Unexpected reserved mode restricted word, unespected token "&"via JSLint.
unexpected at JSOM parse position 0.
Hola Como puedo saber si mi web sobre gatos https://www.feelcats.com tiene problemas? algunas personas me han dicho que reciben notificaciones de su navegador pero yo no veo nada
gracias
For retirable jQuery library see: Retire.js
jquery 1.8.2 Found in -https://www.feelcats.com/media/js/841a37a0634ac9d7939850fa143a1b99-1551820798.js
Vulnerability info:
Medium CVE-2012-6708 11290 Selector interpreted as HTML
Medium 2432 3rd party CORS request may execute CVE-2015-9251
Medium CVE-2015-9251 11974 parseHTML() executes scripts in event handlers
Low CVE-2019-11358 jQuery before 3.4.0, as used in Drupal, Backdrop CMS, and other products, mishandles jQuery.extend(true, {}, …) because of Object.prototype pollution
From the Web Developer’s Point of View following errors appear:
Access to XMLHttpRequest at ‘hxtps://static.aroa.io/sync/userData.php’ from origin ‘hxtps://www.feelcats.com’ has been blocked by CORS policy: The ‘Access-Control-Allow-Origin’ header has a value ‘htxps://www.deporvillage.com’ that is not equal to the supplied
origin. Data have been pushed: -hxtps://static.aroa.io/c-3po-two-kk-r2-D2-0-class_v5.js
Wait for an avast team member to give the final verdict, as I do not see your website being blocked at the moment.
Avast Team Members are the only ones to come and unblock, as we here are just volunteers that may have relative knowledge.
polonus (volunteer 3rd party cold recon website security analyst and website error-hunter)