SRI hashes missing: https://sritest.io/#report/a505e9ef-67ea-4ff7-ba89-ab28da86383c
Retirable jQuery libraries, and that medium insecurity exactly here: http://retire.insecurity.today/#!/scan/7620cde3f8cd43b3245a9f22a752f623fdabd7a7fcf723b809947cfdf7ae5490
Bad zone for this sub-domain (scr whitelisted?) Certificate - Warnings
Root installed on the server.
For best practices, remove the self-signed root from the server.
Normal CloudFlare glitches and issues, but also: Warnings for Duplicates
WARNING: MX records duplicates (same IP address):
173.194.222.26: [-alt1.aspmx.l.google.com. -aspmx2.googlemail.com.]
2404:6800:4003:c02::1a: [-alt2.aspmx.l.google.com. -aspmx3.googlemail.com.]
74.125.68.26: [-alt2.aspmx.l.google.com.-aspmx3.googlemail.com.]
Although technically valid, duplicate MX records have no benefits and can cause confusion.
Warning: Your SOA serial number is: 2021702404. This can be ok if you know what you are doing.
NetDNA-cache/2.2 exploit has a cache managing issue!
-http://b.gtld-servers.net/ open to DNS hijacking: →
https://forum.directadmin.com/archive/index.php/t-43533.html
0-type XSS: http://www.domxssscanner.com/scan?url=https%3A%2F%2Fcode.jquery.com
Especially on that retirable library: Results from scanning URL: -https://code.jquery.com/jquery-1.11.3.js
Number of sources found: 115
Number of sinks found: 94
polonus (volunteer website security analyst and website error-hunter)
P.S. Those into ad-blocking block adzerk dot net from there…
D