25
低风险
2026-05-21 01:56:52
发现的安全问题
- ⚠️[LOW] 服务器信息泄露
- ⚠️[MEDIUM] 缺少 HTTP 安全头
修复建议
- 💡添加 DMARC 记录增强邮件安全
- 💡配置 Web 服务器添加这些安全头
- 💡移除或修改 Server/X-Powered-By 响应头
🌐域名信息
目标域名d-themes.com
注册域名d-themes.com
顶级域名.com
🛡️威胁情报 (7 platforms)
Blacklist未列入黑名单
Malware0
Phishing0
Abuse Score0/100
🐛发现的漏洞 (2)
MEDIUM缺少 HTTP 安全头
缺少以下安全头: X-Frame-Options, Content-Security-Policy, Referrer-Policy, Permissions-Policy
修复建议: 配置 Web 服务器添加这些安全头
LOW服务器信息泄露
响应头泄露服务器信息: Server: cloudflare, X-Powered-By: PHP/8.2.30
修复建议: 移除或修改 Server/X-Powered-By 响应头
🔌开放端口 (4)
80
http
443
http
8080
unknown
8443
unknown
🌐DNS 记录
A: 172.67.199.149
A: 104.21.44.121
AAAA: 2606:4700:3031::6815:2c79
AAAA: 2606:4700:3037::ac43:c795
MX: 6 route3.mx.cloudflare.net.
MX: 37 route1.mx.cloudflare.net.
MX: 53 route2.mx.cloudflare.net.
NS: trace.ns.cloudflare.com.
NS: martha.ns.cloudflare.com.
TXT: "brevo-code:c15fff6427da8c5e75bd57d4d9e4dc54"
TXT: "v=spf1 +ip4:75.98.162.89 +include:_spf.mx.cloudflare.net ~all"
SOA: martha.ns.cloudflare.com. dns.cloudflare.com. 2400513008 10000 2400 604800 1800
📋HTTP 响应头
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
Strict-Transport-Security: max-age=63072000; includeSubDomains
Server: cloudflare
X-Powered-By: PHP/8.2.30