25
低风险
2026-05-21 06:26:21
发现的安全问题
- ⚠️[LOW] 服务器信息泄露
- ⚠️[MEDIUM] 缺少 HTTP 安全头
修复建议
- 💡添加 DMARC 记录增强邮件安全
- 💡配置 Web 服务器添加这些安全头
- 💡移除或修改 Server/X-Powered-By 响应头
🌐域名信息
目标域名cmswire.com
注册域名cmswire.com
顶级域名.com
🛡️威胁情报 (7 platforms)
Blacklist未列入黑名单
Malware0
Phishing0
Abuse Score0/100
🐛发现的漏洞 (2)
MEDIUM缺少 HTTP 安全头
缺少以下安全头: Strict-Transport-Security
修复建议: 配置 Web 服务器添加这些安全头
LOW服务器信息泄露
响应头泄露服务器信息: Server: cloudflare
修复建议: 移除或修改 Server/X-Powered-By 响应头
🔌开放端口 (4)
80
http
443
https
8080
unknown
8443
unknown
🌐DNS 记录
A: 172.66.129.247
A: 104.20.15.20
AAAA: 2606:4700:10::ac42:81f7
AAAA: 2606:4700:10::6814:f14
MX: 70 aspmx5.googlemail.com.
MX: 40 aspmx2.googlemail.com.
MX: 50 aspmx3.googlemail.com.
MX: 30 alt2.aspmx.l.google.com.
MX: 20 alt1.aspmx.l.google.com.
MX: 10 aspmx.l.google.com.
MX: 60 aspmx4.googlemail.com.
NS: tom.ns.cloudflare.com.
NS: kara.ns.cloudflare.com.
TXT: "v=spf1 include:_spf.google.com include:mktomail.com include:spf.mandrillapp.com ~all"
TXT: "google-site-verification=d2cpyWFegoklQho6236y8X3Kwqmrgwe6S54NAGWMhD8"
TXT: "google-site-verification=kDJWk_ndfhmZwA2jUZ5JMmgpS_bSVnmOvKASBFoex7w"
TXT: "linkedin-site-verification=4d9b02fb-78ba-4fc8-8483-1666dccfdc57"
TXT: "facebook-domain-verification=kdlqzaatpa5ynd80kbjgvxpzwqzel2"
TXT: "google-site-verification=tBMKZ_raYuwqunnDXLbbpRBWPnokmeygd9xc5x7N7P4"
SOA: kara.ns.cloudflare.com. dns.cloudflare.com. 2403818214 10000 2400 604800 1800
📋HTTP 响应头
X-Frame-Options: SAMEORIGIN
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
Content-Security-Policy: default-src 'none'; script-src 'nonce-Hvy3CEA1JAikffBlG69Bdf' 'unsafe-eval' https://challenges.cloudflare.com; script-sr
Referrer-Policy: same-origin
Permissions-Policy: accelerometer=(),browsing-topics=(),camera=(),clipboard-read=(),clipboard-write=(),geolocation=(),gyroscope=(),hid=(),in
Server: cloudflare