ImmuniWeb® Community Edition | Website Security Test

Summary of www.maua.br [Desktop version]

Website Security Test
maua.br was tested 2 times during the last 12 months.

Your final score

Tested on: Sep 4th, 2023 17:12:16 GMT+0 A

B+
Server IP: 177.73.176.47
B
Reverse DNS: 177-73-176-47.sothis.com.br
Location: São Paulo C

Client: Desktop version

F

Software Compliance Compliance Content

Security Test Test Test Security Policy Test

4 ISSUES FOUND 1 ISSUE FOUND 1 ISSUE FOUND MISSING

Headers
Security Test

NO MAJOR ISSUES FOUND

Test Results: https://www.immuniweb.com/websec/www.maua.br/NnpOdlZq/ 1 / 10

 ImmuniWeb® Community Edition | Website Security Test

Upgrade from Free Community Edition

to ImmuniWeb® AI Platform Now!

API Penetration Mobile Penetration

Testing Testing

API Security Mobile Security

Scanning Scanning

Attack Surface Network Security

Management Assessment

Cloud Penetration PCI DSS Penetration

Testing Testing

Cloud Security Posture Phishing Websites

Management Takedown

Continuous Penetration Red Teaming

Testing Exercise

Cyber Threat Software Composition

Intelligence Analysis

Dark Web Third-Party Risk

Monitoring Management

Digital Brand Web Penetration

Protection Testing

GDPR Penetration Web Security

Testing Scanning

Free Demo Book a Call

Test Results: https://www.immuniweb.com/websec/www.maua.br/NnpOdlZq/ 2 / 10

 ImmuniWeb® Community Edition | Website Security Test

Web Software Security Test

Web Software Web Software Web Software

Found Outdated Vulnerabilities

7 5 0
Fingerprinted CMS & Vulnerabilities

No CMS were fingerprinted on the website. Information

Fingerprinted CMS Components & Vulnerabilities

jQuery 3.6.0

The component is outdated. No known security vulnerabilities found. Update to the most recent version 3.7.1.

Bootstrap 4.5.2

The component is outdated. No known security vulnerabilities found. Update to the most recent version 4.6.2.

Core-js 3.0.0—3.11.0

The component is outdated. We fingerprinted several possible versions of the component due to slow speed
of the web server or modifications in the component code. Current most recent version is 3.32.1.

Popper-core 1.16.1

The component is outdated. No known security vulnerabilities found. Update to the most recent version
2.11.8.

Bluebird 3.3.4

The component is outdated. No known security vulnerabilities found. Update to the most recent version 3.7.2.

Test Results: https://www.immuniweb.com/websec/www.maua.br/NnpOdlZq/ 3 / 10

 ImmuniWeb® Community Edition | Website Security Test

Pdfh5 1.4.5

The fingerprinted component version is up2date, no security issues were found.

Owlcarousel2 2.3.4

The fingerprinted component version is up2date, no security issues were found.

Test Results: https://www.immuniweb.com/websec/www.maua.br/NnpOdlZq/ 4 / 10

 ImmuniWeb® Community Edition | Website Security Test

GDPR Compliance Test

If the website processes or stores personal data of the EU residents, the following requirements of EU GDPR may
apply:

PRIVACY POLICY

Privacy Policy was found on the website. Good configuration

WEBSITE SECURITY

No publicly known vulnerabilities were found in the website CMS or its components. Good configuration

TLS ENCRYPTION

HTTPS encryption is missing or has known security weaknesses or Misconfiguration or

misconfigurations. weakness

COOKIE PROTECTION

No cookies with personal or tracking information seem to be sent. Information

COOKIE DISCLAIMER

No third-party cookies or cookies with tracking information seem to be sent. Information

Test Results: https://www.immuniweb.com/websec/www.maua.br/NnpOdlZq/ 5 / 10

 ImmuniWeb® Community Edition | Website Security Test

PCI DSS Compliance Test

If the website falls into a CDE (Cardholder Data Environment) scope, the following Requirements of PCI DSS may
apply:

REQUIREMENT 6.2

Website CMS or its components seem to be outdated. Check for available Misconfiguration or
updates. weakness

REQUIREMENT 6.5

No publicly known vulnerabilities seem to be present in the fingerprinted versions

Good configuration
the website CMS and its components.

REQUIREMENT 6.6

The website seems to be protected by a WAF. Review its logs and configuration on
Good configuration
a periodic basis.

Test Results: https://www.immuniweb.com/websec/www.maua.br/NnpOdlZq/ 6 / 10

 ImmuniWeb® Community Edition | Website Security Test

HTTP Headers Security

Some HTTP headers related to security and privacy are missing or Misconfiguration or
misconfigured. weakness

MISSING REQUIRED HTTP HEADERS

X-Frame-Options X-Content-Type-Options

MISSING OPTIONAL HTTP HEADERS

Access-Control-Allow-Origin Permissions-Policy

SERVER

The web server discloses its version, potentially facilitating further attacks Misconfiguration or
against it. weakness

Server

Server: Apache/2.4.41 (Ubuntu)

Test Results: https://www.immuniweb.com/websec/www.maua.br/NnpOdlZq/ 7 / 10

 ImmuniWeb® Community Edition | Website Security Test

Content Security Policy Test

CONTENT-SECURITY-POLICY

The header was not sent by the server. Misconfiguration or weakness

Test Results: https://www.immuniweb.com/websec/www.maua.br/NnpOdlZq/ 8 / 10

 ImmuniWeb® Community Edition | Website Security Test

Cookies Privacy and Security Analysis

No cookies were sent by the web application. Good configuration

Test Results: https://www.immuniweb.com/websec/www.maua.br/NnpOdlZq/ 9 / 10

 ImmuniWeb® Community Edition | Website Security Test

External Content Privacy and Security Analysis

No external content found on tested page. Information

The End of Report

Upgrade from Free Community Edition to ImmuniWeb® AI Platform

Test Results: https://www.immuniweb.com/websec/www.maua.br/NnpOdlZq/ 10 / 10