Cannot seem to understand why developers of a webpage don’t check first issues and standards against a w3 dot org HTML validator:

https://validator.w3.org/nu/?doc=http%3A%2F%2Fwww.reprol.com.br%2F with 26 warnings and errors, also checked here: https://seomon.com/domain/www.reprol.com.br/ e.g. https://seomon.com/domain/www.reprol.com.br/html_validator/

These one page 3rd party scans did not bring much issues: http://retire.insecurity.today/#!/scan/951fe949f458e9b593ca79631ec72c6a2ffdcbc31ec2e5316c53b9b91e92cb4b
One external stylesheet here for SRI hash issues: Stylesheets 1 issues
Tag Result

Seems OK, but consider here: http://www.domxssscanner.com/scan?url=http%3A%2F%2Fwww.reprol.com.br
with Supplied URL could not be fetched.Error: Supplied URL could not be fetched.
Results from scanning URL: -http://reprol.com.br/
Number of sources found: 3
Number of sinks found: 88 with slow load for admin-ajax.php

polonus (volunteer website security analyst and website error-hunter)