Security Headers Check
dukeit.uk
Results Summary
8 findings detected across dukeit.uk.
Severity Breakdown
Total findings detected across all components. The public summary below groups findings by vulnerability type. To see every affected component in full detail, run a free scan on your own domain at vulnify.app/tools.
Findings Overview
8 unique issues shown below, grouped from 8 total findings. When a vulnerability affects multiple components, it is listed once with the affected component count.
-
medium Content-Security-Policy (CSP): missing
Prevents XSS and data injection attacks
-
medium X-Frame-Options: missing
Prevents clickjacking attacks
-
medium X-Content-Type-Options: missing
Prevents MIME-type sniffing
-
medium X-XSS-Protection: missing
Legacy XSS protection (modern browsers use CSP)
-
medium Referrer-Policy: missing
Controls how much referrer information is shared
-
medium Permissions-Policy: missing
Controls browser features and APIs
-
medium [REDACTED]: missing
Restricts Adobe Flash and PDF policies
-
info Strict-Transport-Security (HSTS): present
max-age=15768000
Run a Full Security Scan on dukeit.uk
Check for XSS, SQL injection, CSRF, broken authentication, and 50+ additional security tests with a complete vulnerability assessment.
About This Check
This report was generated using Vulnify's free security tools. Results reflect the configuration at the time of the check. For ongoing monitoring, detailed remediation guidance, and vulnerability scanning across 50+ security tests, create a free Vulnify account.
Last checked:
Report abuse
If this page contains sensitive data, copyright issues, or should not be public, report it.