amarokspirit.ch
Scanned Jun 16, 2026, 12:58 PM
Run a fresh audit — UpgradeSecurity Assessment
Key findings for amarokspirit.ch
- 3 active vulnerabilities detected across 15 plugins.
- 1 plugin is outdated and should be updated.
- Security headers grade F — 3 important headers are missing.
- TLS certificate expires in 19 days.
- 5 sensitive paths exposed to the public.
WordPress
Active Theme
Hosting Provider
Detected Plugins
15 total| Plugin | Vulnerabilities |
|---|---|
| None found | |
| None found | |
Event Tickets and Registration medium confidence | None found |
Spectra Gutenberg Blocks – Website Builder for the Block Editor medium confidence | None found |
Your full security report is ready
We found 15 plugins on this site. Unlock the complete analysis:
Security Report
- Full report for this site
- Every detected plugin & CVE
- Remediation guidance
- No re-audit after fixes
Report + Re-audit
- Everything in Security Report
- One complimentary re-audit within 90 days
- Verify your fixes actually closed the findings
- Clean-record badge for your site
Guided Remediation
- Everything in Report + Re-audit
- 15–30 min expert consult to triage findings
- Prioritized action plan for your site
- Optional partner handoff for fixes
One-time payment · Instant access · No subscription required
Not ready to buy? We'll send you a one-time free alert
if we detect a new vulnerability affecting your plugins.
One free alert · Continuous monitoring available with a paid plan
Security Posture
Security Headers
33/100No Content-Security-Policy header. Your site is more vulnerable to XSS attacks.
HSTS is enabled. Consider adding includeSubDomains for better protection.
No clickjacking protection. Your site can be embedded in malicious iframes.
TLS/SSL Certificate
Exposed Paths & Login Security
5 exposed5 security issues found — unlock to see which paths are exposed.
DNS & Email Security
SPF record with hard fail (-all) — strong email authentication.
DMARC policy is set to reject — strongest protection against email spoofing.
No DKIM record found for common selectors. Email authenticity cannot be verified (or uses a non-standard selector).
Certificate Transparency
90 certificates found · 8 subdomains discovered
Infrastructure
Server: Apache
X-Powered-By header is not exposed.
No WAF detected. Consider adding one for additional protection.