https://www.zuzunza.com/

Scan ID:
0bddbffc-6cf3-4426-922d-3eaaa64a6bb3Finished
Submitted URL:
https://www.zuzunza.com/
Report Finished:

Risks · 0 found

Copy link

Practices that may pose security risks

  • No classification

Security Headers · 1 found

Copy link

HTTP response headers that can harden the security of a web application

Learn more...
NameValueSupportInfo
Strict-Transport-Securitymax-age=0; preloadGoodDeclare that a website is only accessible over a secure connection (HTTPS).

Click to learn more...
X-Frame-OptionsGoodIndicate whether a browser should be allowed to render a page in a <frame>, <iframe>, <embed> or <object>.

Click to learn more...
X-Content-Type-OptionsGoodIndicate that the MIME types advertised in the Content-Type headers should be followed and not be changed.

Click to learn more...
Content-Security-PolicyGoodControl resources the user agent is allowed to load for a given page.

Click to learn more...
Referrer-PolicyGoodControl how much referrer information should be included with requests.

Click to learn more...
Clear-Site-DataGoodControl the data stored by a client browser for their origins.

Click to learn more...
X-Permitted-Cross-Domain-PoliciesGoodControl whether a web client such as Adobe Flash Player or Adobe Acrobat has permission to handle data across domains.

Click to learn more...
Permissions-PolicyNewAllow and deny the use of browser features in a document or iframe.

Click to learn more...
Cross-Origin-Embedder-PolicyNewConfigure embedding cross-origin resources into the document.

Click to learn more...
Cross-Origin-Opener-PolicyNewEnsure a top-level document does not share a browsing context group with cross-origin documents.

Click to learn more...
Cross-Origin-Resource-PolicyNewRequest that the browser blocks no-cors cross-origin/cross-site requests to the given resource.

Click to learn more...
X-XSS-ProtectionDeprecatedDeprecated. Stops pages from loading when they detect reflected cross-site scripting (XSS) attacks.

Click to learn more...
Feature-PolicyDeprecatedDeprecated. Replaced by the Permissions-Policy header.

Click to learn more...
Expect-CTDeprecatedDeprecated. Opt in to reporting and/or enforcement of Certificate Transparency requirements.

Click to learn more...
Public-Key-PinsDeprecatedDeprecated. Allows HTTPS websites to resist impersonation by attackers using mis-issued or otherwise fraudulent certificates.

Click to learn more...

Security Violations · 3 found

Copy link

Requests or resources offending security policies

ViolationTypeInfo
Resource
https://unpkg.com/@ruffle-rs/ruffle
Description
Couldn't load Ruffle into IFRAME[https://pagead2.googlesyndication.com/pagead/ads?client=ca-pub-2461329117567284&output=html&h=90&slotname=3495990811&adk=2619534673&adf=221411756&pi=t.ma~as.3495990811&w=696&abgtt=6&lmt=1737466507&rafmt=12&format=696x90&url=https%3A%2F%2Fwww.zuzunza.com%2F&wgl=1&uach=WyIiLCIiLCIiLCIiLCIiLG51bGwsMCxudWxsLCIiLG51bGwsMF0.&dt=1737466510041&bpp=29&bdt=2348&idt=401&shv=r20250114&mjsv=m202501150101&ptt=9&saldr=aa&abxe=1&eoidce=1&prev_fmts=0x0&nras=1&correlator=7238911163532&frm=20&pv=1&u_tz=0&u_his=2&u_h=1&u_w=1&u_ah=1&u_aw=1&u_cd=24&u_sd=1&dmc=2&adx=47&ady=167&biw=790&bih=600&scr_x=0&scr_y=0&eid=95344787%2C95350244%2C95350442%2C95350549%2C31089851&oid=2&pvsid=3590743412268053&tmod=1236393622&uas=0&nvt=1&fc=1920&brdim=0%2C0%2C0%2C0%2C1%2C0%2C0%2C0%2C800%2C600&vis=1&rsz=%7C%7CoeE%7C&abl=CS&pfx=0&fu=256&bc=31&bz=0&ifi=2&uci=a!2&fsb=1&dtd=420]: SecurityError: Failed to read a named property 'document' from 'Window': Blocked a frame with origin "https://www.zuzunza.com" from accessing a cross-origin frame.
Cross-Origin Resource SharingControls which external origins are allowed load resources.

Click to learn more...
Resource
https://unpkg.com/@ruffle-rs/ruffle
Description
Couldn't load Ruffle into IFRAME[https://pagead2.googlesyndication.com/pagead/ads?client=ca-pub-2461329117567284&output=html&adk=1812271804&adf=3025194257&abgtt=6&lmt=1737466507&plaf=1%3A2%2C7%3A2&plat=1%3A128%2C2%3A128%2C3%3A128%2C4%3A128%2C9%3A134250504%2C16%3A8388608%2C17%3A32%2C24%3A32%2C25%3A32%2C30%3A1048576%2C32%3A32%2C41%3A32%2C42%3A32&format=0x0&url=https%3A%2F%2Fwww.zuzunza.com%2F&pra=5&wgl=1&aihb=0&asro=0&ailel=1~2~4~6~7~8~9~10~11~12~13~14~15~16~17~18~19~20~21~24~29~30~34&aiael=1~2~3~4~6~7~8~9~10~11~12~13~14~15~16~17~18~19~20~21~24~29~30~34&aicel=33~38&aifxl=29_18~30_19&aiixl=29_5~30_6&aiict=1&itsi=-1&aiapm=0.15&aiapmi=0.33938&aief=1&uach=WyIiLCIiLCIiLCIiLCIiLG51bGwsMCxudWxsLCIiLG51bGwsMF0.&dt=1737466510009&bpp=31&bdt=2315&idt=325&shv=r20250114&mjsv=m202501150101&ptt=9&saldr=aa&abxe=1&eoidce=1&nras=1&correlator=7238911163532&frm=20&pv=2&u_tz=0&u_his=2&u_h=1&u_w=1&u_ah=1&u_aw=1&u_cd=24&u_sd=1&dmc=2&adx=-12245933&ady=-12245933&biw=790&bih=600&scr_x=0&scr_y=0&eid=95344787%2C95350244%2C95350442%2C95350549%2C31089851&oid=2&pvsid=3590743412268053&tmod=1236393622&uas=0&nvt=1&fsapi=1&fc=1920&brdim=0%2C0%2C0%2C0%2C1%2C0%2C0%2C0%2C800%2C600&vis=1&rsz=%7C%7Cs%7C&abl=NS&fu=32768&bc=31&bz=0&ifi=1&uci=a!1&fsb=1&dtd=378]: SecurityError: Failed to read a named property 'document' from 'Window': Blocked a frame with origin "https://www.zuzunza.com" from accessing a cross-origin frame.
Cross-Origin Resource SharingControls which external origins are allowed load resources.

Click to learn more...
Resource
https://unpkg.com/@ruffle-rs/ruffle
Description
Couldn't load Ruffle into IFRAME[https://pagead2.googlesyndication.com/pagead/html/r20250114/r20190131/zrt_lookup_fy2021.html]: SecurityError: Failed to read a named property 'document' from 'Window': Blocked a frame with origin "https://www.zuzunza.com" from accessing a cross-origin frame.
Cross-Origin Resource SharingControls which external origins are allowed load resources.

Click to learn more...

Certificates · 4 found

Copy link

SSL/TLS Certificates enable websites to encrypt transactions between the client and the server and provide server identity verification

SubjectIssue dateExpiry date
zuzunza.com
*.g.doubleclick.net
cloudflareinsights.com
adtrafficquality.google