Website has insecure log-in: AD.nl, het laatste nieuws uit binnen- en buiten… padlock icon
www.ad.nl
Alerts (1)
Insecure login (1)
Password will be transmited in clear to -http://www.ad.nl/
Infos (1)
Encryption (HTTPS) (1)
Communication is NOT encrypted
Tracking IDs are sent insecurely: This website is insecure.
27% of the trackers on this site could be protecting you from NSA snooping. Tell ad.nl to fix it.
Tweet
Identifiers | All Trackers
Insecure Identifiers
Unique IDs about your web browsing habits have been insecurely sent to third parties.
15355xxxxxxxx875604 -www.ad.nl creid
jQuery insecure libraries to be retired: -http://www.ad.nl/
Detected libraries:
jquery - 1.11.2 : -http://script.shoppingminds.com/SMart/SMart.jquery-1.11.2.min.js
Info: Severity: medium
https://github.com/jquery/jquery/issues/2432
http://blog.jquery.com/2016/01/08/jquery-2-2-and-1-12-released/
jquery - 1.11.2 : -http://script.shoppingminds.com/SMart/SMart.jquery-1.11.2.min.js
Info: Severity: medium
https://github.com/jquery/jquery/issues/2432
http://blog.jquery.com/2016/01/08/jquery-2-2-and-1-12-released/
2 vulnerable libraries detected → http://www.domxssscanner.com/scan?url=http%3A%2F%2Fscript.shoppingminds.com%2FSMart%2FSMart.jquery-1.11.2.min.js (see where it lands at: -http://www.jobspider.com/job/_ScriptLibrary/pm.js ).
Errors in this script:
found JavaScript
error: line:4: SyntaxError: missing ) in parenthetical:
error: line:4: ocumentElement,e=g.defaultView,e&&e!==e.top&&(e.addEventListener?e.addEventListener("unload",eb,!1):e.attachEvent&&e.attachEvent("onunload",eb)),p=!f(g),c.attributes=jb(function(a){return a.className="i",!a.getAttribute("className")}),c.getElementsByT
error: line:4: ...............................................^
Eval is evil, code error probably due to brace problem, the output of the server is invalid. Info credits to Stackoverflow’s Rafid.
This is even worse because of this meagre F-Status for subresource integrity: https://sritest.io/#report/8780b341-b9df-426d-b469-60124b119e59
1 unsafe stylesheet detected. Reversed DNS web rep: https://www.mywot.com/en/scorecard/a72-247-87-111.deploy.akamaitechnologies.com?utm_source=addon&utm_content=contextmenu
polonus (volunteer website security analyst and website error-hunter)