https://bahn.social/tags/ahmetcadirci

Scan ID:
87bfbcd0-8314-46ed-a523-a21506b09a73Finished
Submitted URL:
https://bahn.social/tags/ahmetcadirci
Report Finished:

Risks · 0 found

Practices that may pose security risks

  • No classification

Security Headers · 7 found

HTTP response headers that can harden the security of a web application

Learn more...
NameValueSupportInfo
Strict-Transport-Securitymax-age=63072000; includeSubDomainsGoodDeclare that a website is only accessible over a secure connection (HTTPS).

Click to learn more...
X-Frame-OptionsDENYGoodIndicate whether a browser should be allowed to render a page in a <frame>, <iframe>, <embed> or <object>.

Click to learn more...
X-Content-Type-Optionsnosniff nosniffGoodIndicate that the MIME types advertised in the Content-Type headers should be followed and not be changed.

Click to learn more...
Content-Security-Policybase-uri 'none'; default-src 'none'; frame-ancestors 'none'; font-src 'self' https://bahn.social; img-src 'self' data: blob: https://bahn.social https://pbs1.bahn.social; style-src 'self' https://bahn.social 'nonce-zuNagQWJWqDxvUkv8Lm6Xg=='; media-src 'self' data: https://bahn.social https://pbs1.bahn.social; manifest-src 'self' https://bahn.social; form-action 'none'; child-src 'self' blob: https://bahn.social; worker-src 'self' blob: https://bahn.social; connect-src 'self' data: blob: https://bahn.social https://pbs1.bahn.social wss://bahn.social; script-src 'self' https://bahn.social 'wasm-unsafe-eval'; frame-src 'self' https:GoodControl resources the user agent is allowed to load for a given page.

Click to learn more...
Referrer-Policysame-originGoodControl how much referrer information should be included with requests.

Click to learn more...
Clear-Site-DataGoodControl the data stored by a client browser for their origins.

Click to learn more...
X-Permitted-Cross-Domain-PoliciesGoodControl whether a web client such as Adobe Flash Player or Adobe Acrobat has permission to handle data across domains.

Click to learn more...
Permissions-PolicyNewAllow and deny the use of browser features in a document or iframe.

Click to learn more...
Cross-Origin-Embedder-PolicyNewConfigure embedding cross-origin resources into the document.

Click to learn more...
Cross-Origin-Opener-PolicyNewEnsure a top-level document does not share a browsing context group with cross-origin documents.

Click to learn more...
Cross-Origin-Resource-PolicyNewRequest that the browser blocks no-cors cross-origin/cross-site requests to the given resource.

Click to learn more...
X-XSS-Protection0 0DeprecatedDeprecated. Stops pages from loading when they detect reflected cross-site scripting (XSS) attacks.

Click to learn more...
Feature-PolicyDeprecatedDeprecated. Replaced by the Permissions-Policy header.

Click to learn more...
Expect-CTDeprecatedDeprecated. Opt in to reporting and/or enforcement of Certificate Transparency requirements.

Click to learn more...
Public-Key-Pinspin-sha256="YLh1dUR9y6Kja30RrAn7JKnbQG/uEtLMkBgFF2Fuihg="; pin-sha256="sRHdihwgkaib1P1gxX8HFszlD+7/gTfNvuAybgLPNis="; pin-sha256="C5+lpZ7tcVwmwQIMcRtPbsQtWLABXhQzejna0wHFr8M="; max-age=7776000; includeSubDomainsDeprecatedDeprecated. Allows HTTPS websites to resist impersonation by attackers using mis-issued or otherwise fraudulent certificates.

Click to learn more...

Security Violations · 29 found

Requests or resources offending security policies

ViolationTypeInfo
Resource
https://bahn.social/tags/ahmetcadirci
Description
Refused to apply inline style because it violates the following Content Security Policy directive: "style-src 'self' https://bahn.social 'nonce-zuNagQWJWqDxvUkv8Lm6Xg=='". Either the 'unsafe-inline' keyword, a hash ('sha256-GaKhaGPUpZoa5mBMV2Nu39HYbtA8/l6xHhi/g2Q3Jnc='), or a nonce ('nonce-...') is required to enable inline execution. Note that hashes do not apply to event handlers, style attributes and javascript: navigations unless the 'unsafe-hashes' keyword is present.
Content Security PolicyControl resources the user agent is allowed to load for a given page.

Click to learn more...
Resource
https://bahn.social/tags/ahmetcadirci
Description
Refused to apply inline style because it violates the following Content Security Policy directive: "style-src 'self' https://bahn.social 'nonce-zuNagQWJWqDxvUkv8Lm6Xg=='". Either the 'unsafe-inline' keyword, a hash ('sha256-O0pRWrYABq9n/C10t1lleX0GXuuO0quYJ4rfTcic+9c='), or a nonce ('nonce-...') is required to enable inline execution. Note that hashes do not apply to event handlers, style attributes and javascript: navigations unless the 'unsafe-hashes' keyword is present.
Content Security PolicyControl resources the user agent is allowed to load for a given page.

Click to learn more...
Resource
https://bahn.social/tags/ahmetcadirci
Description
Refused to apply inline style because it violates the following Content Security Policy directive: "style-src 'self' https://bahn.social 'nonce-zuNagQWJWqDxvUkv8Lm6Xg=='". Either the 'unsafe-inline' keyword, a hash ('sha256-4I3CZ+WtFWqvCn/xlTruw4MYgH4d27S9HZ9HNv7+Rto='), or a nonce ('nonce-...') is required to enable inline execution. Note that hashes do not apply to event handlers, style attributes and javascript: navigations unless the 'unsafe-hashes' keyword is present.
Content Security PolicyControl resources the user agent is allowed to load for a given page.

Click to learn more...
Resource
https://bahn.social/tags/ahmetcadirci
Description
Refused to apply inline style because it violates the following Content Security Policy directive: "style-src 'self' https://bahn.social 'nonce-zuNagQWJWqDxvUkv8Lm6Xg=='". Either the 'unsafe-inline' keyword, a hash ('sha256-ibvZow8Grf7eeAMCIVKJ4vANWWjcFJlsWLsJbJ1pS7Q='), or a nonce ('nonce-...') is required to enable inline execution. Note that hashes do not apply to event handlers, style attributes and javascript: navigations unless the 'unsafe-hashes' keyword is present.
Content Security PolicyControl resources the user agent is allowed to load for a given page.

Click to learn more...
Resource
https://bahn.social/tags/ahmetcadirci
Description
Refused to apply inline style because it violates the following Content Security Policy directive: "style-src 'self' https://bahn.social 'nonce-zuNagQWJWqDxvUkv8Lm6Xg=='". Either the 'unsafe-inline' keyword, a hash ('sha256-3EP1piOo/O4YWqWO7mQYW6fCsMcX8uB/C/w3Cgomac4='), or a nonce ('nonce-...') is required to enable inline execution. Note that hashes do not apply to event handlers, style attributes and javascript: navigations unless the 'unsafe-hashes' keyword is present.
Content Security PolicyControl resources the user agent is allowed to load for a given page.

Click to learn more...
Resource
https://bahn.social/tags/ahmetcadirci
Description
Refused to apply inline style because it violates the following Content Security Policy directive: "style-src 'self' https://bahn.social 'nonce-zuNagQWJWqDxvUkv8Lm6Xg=='". Either the 'unsafe-inline' keyword, a hash ('sha256-qzaHIrOGVHEetgBrViMNa1AGO+j9gWCJ1edtVQKMddE='), or a nonce ('nonce-...') is required to enable inline execution. Note that hashes do not apply to event handlers, style attributes and javascript: navigations unless the 'unsafe-hashes' keyword is present.
Content Security PolicyControl resources the user agent is allowed to load for a given page.

Click to learn more...
Resource
https://bahn.social/tags/ahmetcadirci
Description
Refused to apply inline style because it violates the following Content Security Policy directive: "style-src 'self' https://bahn.social 'nonce-zuNagQWJWqDxvUkv8Lm6Xg=='". Either the 'unsafe-inline' keyword, a hash ('sha256-3EP1piOo/O4YWqWO7mQYW6fCsMcX8uB/C/w3Cgomac4='), or a nonce ('nonce-...') is required to enable inline execution. Note that hashes do not apply to event handlers, style attributes and javascript: navigations unless the 'unsafe-hashes' keyword is present.
Content Security PolicyControl resources the user agent is allowed to load for a given page.

Click to learn more...
Resource
https://bahn.social/tags/ahmetcadirci
Description
Refused to apply inline style because it violates the following Content Security Policy directive: "style-src 'self' https://bahn.social 'nonce-zuNagQWJWqDxvUkv8Lm6Xg=='". Either the 'unsafe-inline' keyword, a hash ('sha256-3EP1piOo/O4YWqWO7mQYW6fCsMcX8uB/C/w3Cgomac4='), or a nonce ('nonce-...') is required to enable inline execution. Note that hashes do not apply to event handlers, style attributes and javascript: navigations unless the 'unsafe-hashes' keyword is present.
Content Security PolicyControl resources the user agent is allowed to load for a given page.

Click to learn more...
Resource
https://bahn.social/tags/ahmetcadirci
Description
Refused to apply inline style because it violates the following Content Security Policy directive: "style-src 'self' https://bahn.social 'nonce-zuNagQWJWqDxvUkv8Lm6Xg=='". Either the 'unsafe-inline' keyword, a hash ('sha256-3EP1piOo/O4YWqWO7mQYW6fCsMcX8uB/C/w3Cgomac4='), or a nonce ('nonce-...') is required to enable inline execution. Note that hashes do not apply to event handlers, style attributes and javascript: navigations unless the 'unsafe-hashes' keyword is present.
Content Security PolicyControl resources the user agent is allowed to load for a given page.

Click to learn more...
Resource
https://bahn.social/tags/ahmetcadirci
Description
Refused to apply inline style because it violates the following Content Security Policy directive: "style-src 'self' https://bahn.social 'nonce-zuNagQWJWqDxvUkv8Lm6Xg=='". Either the 'unsafe-inline' keyword, a hash ('sha256-3EP1piOo/O4YWqWO7mQYW6fCsMcX8uB/C/w3Cgomac4='), or a nonce ('nonce-...') is required to enable inline execution. Note that hashes do not apply to event handlers, style attributes and javascript: navigations unless the 'unsafe-hashes' keyword is present.
Content Security PolicyControl resources the user agent is allowed to load for a given page.

Click to learn more...
Resource
https://bahn.social/tags/ahmetcadirci
Description
Refused to apply inline style because it violates the following Content Security Policy directive: "style-src 'self' https://bahn.social 'nonce-zuNagQWJWqDxvUkv8Lm6Xg=='". Either the 'unsafe-inline' keyword, a hash ('sha256-3EP1piOo/O4YWqWO7mQYW6fCsMcX8uB/C/w3Cgomac4='), or a nonce ('nonce-...') is required to enable inline execution. Note that hashes do not apply to event handlers, style attributes and javascript: navigations unless the 'unsafe-hashes' keyword is present.
Content Security PolicyControl resources the user agent is allowed to load for a given page.

Click to learn more...
Resource
https://bahn.social/tags/ahmetcadirci
Description
Refused to apply inline style because it violates the following Content Security Policy directive: "style-src 'self' https://bahn.social 'nonce-zuNagQWJWqDxvUkv8Lm6Xg=='". Either the 'unsafe-inline' keyword, a hash ('sha256-3EP1piOo/O4YWqWO7mQYW6fCsMcX8uB/C/w3Cgomac4='), or a nonce ('nonce-...') is required to enable inline execution. Note that hashes do not apply to event handlers, style attributes and javascript: navigations unless the 'unsafe-hashes' keyword is present.
Content Security PolicyControl resources the user agent is allowed to load for a given page.

Click to learn more...
Resource
https://bahn.social/tags/ahmetcadirci
Description
Refused to apply inline style because it violates the following Content Security Policy directive: "style-src 'self' https://bahn.social 'nonce-zuNagQWJWqDxvUkv8Lm6Xg=='". Either the 'unsafe-inline' keyword, a hash ('sha256-3EP1piOo/O4YWqWO7mQYW6fCsMcX8uB/C/w3Cgomac4='), or a nonce ('nonce-...') is required to enable inline execution. Note that hashes do not apply to event handlers, style attributes and javascript: navigations unless the 'unsafe-hashes' keyword is present.
Content Security PolicyControl resources the user agent is allowed to load for a given page.

Click to learn more...
Resource
https://bahn.social/tags/ahmetcadirci
Description
Refused to apply inline style because it violates the following Content Security Policy directive: "style-src 'self' https://bahn.social 'nonce-zuNagQWJWqDxvUkv8Lm6Xg=='". Either the 'unsafe-inline' keyword, a hash ('sha256-3EP1piOo/O4YWqWO7mQYW6fCsMcX8uB/C/w3Cgomac4='), or a nonce ('nonce-...') is required to enable inline execution. Note that hashes do not apply to event handlers, style attributes and javascript: navigations unless the 'unsafe-hashes' keyword is present.
Content Security PolicyControl resources the user agent is allowed to load for a given page.

Click to learn more...
Resource
https://bahn.social/tags/ahmetcadirci
Description
Refused to apply inline style because it violates the following Content Security Policy directive: "style-src 'self' https://bahn.social 'nonce-zuNagQWJWqDxvUkv8Lm6Xg=='". Either the 'unsafe-inline' keyword, a hash ('sha256-3EP1piOo/O4YWqWO7mQYW6fCsMcX8uB/C/w3Cgomac4='), or a nonce ('nonce-...') is required to enable inline execution. Note that hashes do not apply to event handlers, style attributes and javascript: navigations unless the 'unsafe-hashes' keyword is present.
Content Security PolicyControl resources the user agent is allowed to load for a given page.

Click to learn more...
Resource
https://bahn.social/tags/ahmetcadirci
Description
Refused to apply inline style because it violates the following Content Security Policy directive: "style-src 'self' https://bahn.social 'nonce-zuNagQWJWqDxvUkv8Lm6Xg=='". Either the 'unsafe-inline' keyword, a hash ('sha256-3EP1piOo/O4YWqWO7mQYW6fCsMcX8uB/C/w3Cgomac4='), or a nonce ('nonce-...') is required to enable inline execution. Note that hashes do not apply to event handlers, style attributes and javascript: navigations unless the 'unsafe-hashes' keyword is present.
Content Security PolicyControl resources the user agent is allowed to load for a given page.

Click to learn more...
Resource
https://bahn.social/tags/ahmetcadirci
Description
Refused to apply inline style because it violates the following Content Security Policy directive: "style-src 'self' https://bahn.social 'nonce-zuNagQWJWqDxvUkv8Lm6Xg=='". Either the 'unsafe-inline' keyword, a hash ('sha256-3EP1piOo/O4YWqWO7mQYW6fCsMcX8uB/C/w3Cgomac4='), or a nonce ('nonce-...') is required to enable inline execution. Note that hashes do not apply to event handlers, style attributes and javascript: navigations unless the 'unsafe-hashes' keyword is present.
Content Security PolicyControl resources the user agent is allowed to load for a given page.

Click to learn more...
Resource
https://bahn.social/tags/ahmetcadirci
Description
Refused to apply inline style because it violates the following Content Security Policy directive: "style-src 'self' https://bahn.social 'nonce-zuNagQWJWqDxvUkv8Lm6Xg=='". Either the 'unsafe-inline' keyword, a hash ('sha256-3EP1piOo/O4YWqWO7mQYW6fCsMcX8uB/C/w3Cgomac4='), or a nonce ('nonce-...') is required to enable inline execution. Note that hashes do not apply to event handlers, style attributes and javascript: navigations unless the 'unsafe-hashes' keyword is present.
Content Security PolicyControl resources the user agent is allowed to load for a given page.

Click to learn more...
Resource
https://bahn.social/tags/ahmetcadirci
Description
Refused to apply inline style because it violates the following Content Security Policy directive: "style-src 'self' https://bahn.social 'nonce-zuNagQWJWqDxvUkv8Lm6Xg=='". Either the 'unsafe-inline' keyword, a hash ('sha256-M/uuA4Mwz/N5QGxiCVTZouNNcTqtXZONh2xE0zoipPs='), or a nonce ('nonce-...') is required to enable inline execution. Note that hashes do not apply to event handlers, style attributes and javascript: navigations unless the 'unsafe-hashes' keyword is present.
Content Security PolicyControl resources the user agent is allowed to load for a given page.

Click to learn more...
Resource
https://bahn.social/tags/ahmetcadirci
Description
Refused to apply inline style because it violates the following Content Security Policy directive: "style-src 'self' https://bahn.social 'nonce-zuNagQWJWqDxvUkv8Lm6Xg=='". Either the 'unsafe-inline' keyword, a hash ('sha256-3EP1piOo/O4YWqWO7mQYW6fCsMcX8uB/C/w3Cgomac4='), or a nonce ('nonce-...') is required to enable inline execution. Note that hashes do not apply to event handlers, style attributes and javascript: navigations unless the 'unsafe-hashes' keyword is present.
Content Security PolicyControl resources the user agent is allowed to load for a given page.

Click to learn more...
Resource
https://bahn.social/tags/ahmetcadirci
Description
Refused to apply inline style because it violates the following Content Security Policy directive: "style-src 'self' https://bahn.social 'nonce-zuNagQWJWqDxvUkv8Lm6Xg=='". Either the 'unsafe-inline' keyword, a hash ('sha256-3EP1piOo/O4YWqWO7mQYW6fCsMcX8uB/C/w3Cgomac4='), or a nonce ('nonce-...') is required to enable inline execution. Note that hashes do not apply to event handlers, style attributes and javascript: navigations unless the 'unsafe-hashes' keyword is present.
Content Security PolicyControl resources the user agent is allowed to load for a given page.

Click to learn more...
Resource
https://bahn.social/tags/ahmetcadirci
Description
Refused to apply inline style because it violates the following Content Security Policy directive: "style-src 'self' https://bahn.social 'nonce-zuNagQWJWqDxvUkv8Lm6Xg=='". Either the 'unsafe-inline' keyword, a hash ('sha256-3EP1piOo/O4YWqWO7mQYW6fCsMcX8uB/C/w3Cgomac4='), or a nonce ('nonce-...') is required to enable inline execution. Note that hashes do not apply to event handlers, style attributes and javascript: navigations unless the 'unsafe-hashes' keyword is present.
Content Security PolicyControl resources the user agent is allowed to load for a given page.

Click to learn more...
Resource
https://bahn.social/tags/ahmetcadirci
Description
Refused to apply inline style because it violates the following Content Security Policy directive: "style-src 'self' https://bahn.social 'nonce-zuNagQWJWqDxvUkv8Lm6Xg=='". Either the 'unsafe-inline' keyword, a hash ('sha256-3EP1piOo/O4YWqWO7mQYW6fCsMcX8uB/C/w3Cgomac4='), or a nonce ('nonce-...') is required to enable inline execution. Note that hashes do not apply to event handlers, style attributes and javascript: navigations unless the 'unsafe-hashes' keyword is present.
Content Security PolicyControl resources the user agent is allowed to load for a given page.

Click to learn more...
Resource
https://bahn.social/tags/ahmetcadirci
Description
Refused to apply inline style because it violates the following Content Security Policy directive: "style-src 'self' https://bahn.social 'nonce-zuNagQWJWqDxvUkv8Lm6Xg=='". Either the 'unsafe-inline' keyword, a hash ('sha256-3EP1piOo/O4YWqWO7mQYW6fCsMcX8uB/C/w3Cgomac4='), or a nonce ('nonce-...') is required to enable inline execution. Note that hashes do not apply to event handlers, style attributes and javascript: navigations unless the 'unsafe-hashes' keyword is present.
Content Security PolicyControl resources the user agent is allowed to load for a given page.

Click to learn more...
Resource
https://bahn.social/tags/ahmetcadirci
Description
Refused to apply inline style because it violates the following Content Security Policy directive: "style-src 'self' https://bahn.social 'nonce-zuNagQWJWqDxvUkv8Lm6Xg=='". Either the 'unsafe-inline' keyword, a hash ('sha256-3EP1piOo/O4YWqWO7mQYW6fCsMcX8uB/C/w3Cgomac4='), or a nonce ('nonce-...') is required to enable inline execution. Note that hashes do not apply to event handlers, style attributes and javascript: navigations unless the 'unsafe-hashes' keyword is present.
Content Security PolicyControl resources the user agent is allowed to load for a given page.

Click to learn more...
Resource
https://bahn.social/tags/ahmetcadirci
Description
Refused to apply inline style because it violates the following Content Security Policy directive: "style-src 'self' https://bahn.social 'nonce-zuNagQWJWqDxvUkv8Lm6Xg=='". Either the 'unsafe-inline' keyword, a hash ('sha256-3EP1piOo/O4YWqWO7mQYW6fCsMcX8uB/C/w3Cgomac4='), or a nonce ('nonce-...') is required to enable inline execution. Note that hashes do not apply to event handlers, style attributes and javascript: navigations unless the 'unsafe-hashes' keyword is present.
Content Security PolicyControl resources the user agent is allowed to load for a given page.

Click to learn more...
Resource
https://bahn.social/tags/ahmetcadirci
Description
Refused to apply inline style because it violates the following Content Security Policy directive: "style-src 'self' https://bahn.social 'nonce-zuNagQWJWqDxvUkv8Lm6Xg=='". Either the 'unsafe-inline' keyword, a hash ('sha256-3EP1piOo/O4YWqWO7mQYW6fCsMcX8uB/C/w3Cgomac4='), or a nonce ('nonce-...') is required to enable inline execution. Note that hashes do not apply to event handlers, style attributes and javascript: navigations unless the 'unsafe-hashes' keyword is present.
Content Security PolicyControl resources the user agent is allowed to load for a given page.

Click to learn more...
Resource
https://bahn.social/tags/ahmetcadirci
Description
Refused to apply inline style because it violates the following Content Security Policy directive: "style-src 'self' https://bahn.social 'nonce-zuNagQWJWqDxvUkv8Lm6Xg=='". Either the 'unsafe-inline' keyword, a hash ('sha256-3EP1piOo/O4YWqWO7mQYW6fCsMcX8uB/C/w3Cgomac4='), or a nonce ('nonce-...') is required to enable inline execution. Note that hashes do not apply to event handlers, style attributes and javascript: navigations unless the 'unsafe-hashes' keyword is present.
Content Security PolicyControl resources the user agent is allowed to load for a given page.

Click to learn more...
Resource
https://bahn.social/tags/ahmetcadirci
Description
Refused to apply inline style because it violates the following Content Security Policy directive: "style-src 'self' https://bahn.social 'nonce-zuNagQWJWqDxvUkv8Lm6Xg=='". Either the 'unsafe-inline' keyword, a hash ('sha256-UtvrvOA7cHLmuvCcC2UrQxPMbepSonvm/yeQ42YjTmI='), or a nonce ('nonce-...') is required to enable inline execution. Note that hashes do not apply to event handlers, style attributes and javascript: navigations unless the 'unsafe-hashes' keyword is present.
Content Security PolicyControl resources the user agent is allowed to load for a given page.

Click to learn more...

Certificates · 2 found

SSL/TLS Certificates enable websites to encrypt transactions between the client and the server and provide server identity verification

SubjectIssue dateExpiry date
bahn.socialOct 7, 2024, 02:02:43Jan 5, 2025, 02:02:42
pbs1.bahn.socialNov 1, 2024, 01:02:54Jan 30, 2025, 01:02:53