English

网址安全检测平台

全面检测网站安全状态 · 漏洞扫描 · 威胁情报 · SSL 分析

首页 检测列表 评分机制
rakutenadvertising.com
检测时间: 2026-05-21 07:44:26
重新检测
57
高风险
2026-05-21 07:44:26

发现的安全问题

  • ⚠️被列入 1 个黑名单: AlienVault OTX
  • ⚠️AlienVault OTX 有 4 个社区讨论(非直接威胁)
  • ⚠️[HIGH] 敏感路径暴露
  • ⚠️[LOW] 服务器信息泄露
  • ⚠️[MEDIUM] 缺少 HTTP 安全头

修复建议

  • 💡限制对这些路径的访问或添加认证
  • 💡移除或修改 Server/X-Powered-By 响应头
  • 💡添加 DMARC 记录增强邮件安全
  • 💡配置 Web 服务器添加这些安全头
  • 💡申请从黑名单中移除,并修复安全问题

🌐域名信息

目标域名rakutenadvertising.com
注册域名rakutenadvertising.com
顶级域名.com

🛡️威胁情报 (7 platforms)

BlacklistAlienVault OTX
Malware4
Phishing0
Abuse Score0/100

🐛发现的漏洞 (3)

MEDIUM缺少 HTTP 安全头
缺少以下安全头: X-XSS-Protection, Strict-Transport-Security, Referrer-Policy, Permissions-Policy
修复建议: 配置 Web 服务器添加这些安全头
LOW服务器信息泄露
响应头泄露服务器信息: Server: nginx, X-Powered-By: WordPress VIP
修复建议: 移除或修改 Server/X-Powered-By 响应头
HIGH敏感路径暴露
发现可访问的敏感路径: /.env
修复建议: 限制对这些路径的访问或添加认证

🔌开放端口 (2)

80
http
443
https

🌐DNS 记录

A: 192.0.66.101
AAAA: 2a04:fa87:fffd::c000:4265
MX: 1 smtp.google.com.
NS: dns1.p09.nsone.net.
NS: dns2.p09.nsone.net.
NS: dns3.p09.nsone.net.
NS: dns4.p09.nsone.net.
TXT: "ZOOM_verify_Au0L61Zp6uoScnxOiFGknq"
TXT: "google-site-verification=0hoFTiJKCOWb5lSWrfjsj2Jq4A-x47NKENNwzSZc0w8"
TXT: "google-site-verification=6t_0n1x7bMXmi91QMLnevZUCNPoO_BDTkcJx6myq0Io"
TXT: "google-site-verification=ARHnNfUCXT_Wt_gC2HM2sZAh1m_sehYGqaaxRSuepmA"
TXT: "google-site-verification=NmO9WHksTH1zgt_DSgIkTouILCKr_iODNQU7217r0A8"
TXT: "google-site-verification=WmQXYsgFH-4wtIufmeVfD2LaKjlWyLwzfzA9TzKL78Q"
TXT: "google-site-verification=eOCnllWp7i9j1ytqSTGOqBeQn4cEnM8u4BBl2PNE2Uo"
TXT: "google-site-verification=w74y42mKEQccfspLxWGl2J0YPMdw4wfU02-rMSK5ocA"
TXT: "tiktok-developers-site-verification=ewXB5hTmM1h7hon6AIQlbUBHwNJ8SfMN"
TXT: "v=spf1 ip4:34.86.181.90/32 ip4:34.145.176.114/32 ip4:35.245.135.76/32 include:sendgrid.net include:mail.zendesk.com include:40067599.spf10.hubspotemail.net include:30741.spf08.hubspotemail.net include:_spf.google.com ~all"
SOA: dns1.p09.nsone.net. hostmaster.nsone.net. 1653326298 43200 7200 1209600 3600

📋HTTP 响应头

X-Frame-Options: SAMEORIGIN
X-Content-Type-Options: nosniff
Content-Security-Policy: default-src * blob: 'unsafe-inline' 'unsafe-eval'; script-src * blob: 'unsafe-inline' 'unsafe-eval'; worker-src * blob:
Server: nginx
X-Powered-By: WordPress VIP