https://www.franklintempleton.com/

Scan ID:
e41e78de-bbea-40eb-ad4f-df361fa0d8fc
Submitted URL:
https://franklintempleton.com/
Report Finished:

Risks · 0 found

Practices that may pose security risks

Security Headers · 4 found

HTTP response headers that can harden the security of a web application

Learn more...
NameValueSupportInfo
Strict-Transport-Securitymax-age=15768000Declare that a website is only accessible over a secure connection (HTTPS).

Click to learn more...
X-Frame-OptionsIndicate whether a browser should be allowed to render a page in a <frame>, <iframe>, <embed> or <object>.

Click to learn more...
X-Content-Type-OptionsnosniffIndicate that the MIME types advertised in the Content-Type headers should be followed and not be changed.

Click to learn more...
Content-Security-Policyscript-src 'self' 'unsafe-inline' 'unsafe-eval' *.adoberesources.net *.apolloplatform.com *.brightcove.com *.brightcove.net *.clarity.ms *.decibelinsight.com *.decibelinsight.net *.doubleclick.net *.franklintempleton.com *.ftsites.com *.fti-cloud.com *.kampyle.com *.marketo.com *.marketo.net *.mktoutil.com *.qualtrics.com *.twimg.com *.yimg.com *.ads.linkedin.com *.linkedin.oribi.io *.linkedin.com *.doubleclick.net *.googleads.g.doubleclick.net ads-twitter.com ads-api.twitter.com analytics.twitter.com www.googleadservices.com trc.taboola.com www.clarity.ms up.pixel.ad connect.facebook.net munchkin.marketo.net www.googletagmanager.com www.googleadservices.com www.google.com www.clarity.ms classify.gofurther.com assets.adoberesources.net up.pixel.ad lonrtp1-cdn.marketo.com static.ads-twitter.com snap.licdn.com p.adsymptotic.com sjs.bizographics.com amplify.outbrain.com apps.mypurecloud.com assets.adoberesources.net bat.bing.com browser-update.org cdn.cookielaw.org cdn.decibelinsight.net classify.gofurther.com connect.facebook.net documentcloud.adobe.com platform.twitter.com resources.digital-cloud-west.medallia.com schema.apolloplatform.com script.mfilterit.net siteimproveanalytics.com snap.licdn.com ssl.google-analytics.com static.ads-twitter.com static.cloudflareinsights.com tr.outbrain.com up.pixel.ad vjs.zencdn.net wss://*.decibelinsight.com wss://*.decibelinsight.net *.taboola.com www.google-analytics.com www.googletagmanager.com zn9nsigbnk054lp8n-frk.siteintercept.qualtrics.com; connect-src 'self' *.adobe.io *.akamaihd.net *.apolloplatform.com *.clarity.ms *.analytics.google.com *.boltdns.net *.brightcove.com *.brightcove.net *.browser-intake-datadoghq.com *.decibelinsight.com *.decibelinsight.net *.doubleclick.net *.franklintempleton.com *.frk.com *.ftsites.com *.fti-cloud.com *.g.doubleclick.net *.google-analytics.com *.google.com *.googletagmanager.com *.kampyle.com *.launchdarkly.com *.marketo.com *.mktoresp.com *.mktoutil.com *.onetrust.com *.onetrust.io *.qualtrics.com *.cloudhub.io *.widen.net *.widencdn.net *.yimg.com *.ads.linkedin.com *.linkedin.oribi.io *.linkedin.com *.doubleclick.net *.googleads.g.doubleclick.net ads-twitter.com ads-api.twitter.com analytics.twitter.com *.digital-cloud-west.medallia.com analytics-fe.digital-cloud-west.medallia.com www.google.com www.googletagmanager.com api.intentiq.com session-replay.browser-intake-datadoghq.com 848-iap-939.mktoresp.com bat.bing.net px.ads.linkedin.com snap.licdn.com p.adsymptotic.com sjs.bizographics.com 848-iap-939.mktoresp.com adservice.google.com bat.bing.com cdn.cookielaw.org cdn.linkedin.oribi.io classify.gofurther.com dc.services.visualstudio.com fti.wsodqa.com hummingbirdwebsocket-va7.cloud.adobe.io pdswebapi.fti-cloud.com px.ads.linkedin.com resources.digital-cloud-west.medallia.com s.yimg.com siteimproveanalytics.com wss://*.decibelinsight.com wss://*.decibelinsight.net *.taboola.com www.facebook.com www.fti.wallst.com wss://*.adobe.io; img-src 'self' data: *.adsymptotic.com *.akamaihd.net *.analytics.google.com *.boltdns.net *.brightcove.com *.cookielaw.org *.doubleclick.net *.facebook.com *.fti-cloud.com *.franklintempleton.com *.g.doubleclick.net *.google-analytics.com *.google.com *.googleapis.com *.googletagmanager.com *.gstatic.com *.kampyle.com *.linkedin.com *.qualtrics.com *.siteimproveanalytics.io *.stocksnap.io *.twimg.com *.widen.net *.widencdn.net www.dianomi.com sync.intentiq.com connect.facebook.net t.co www.facebook.com ad.doubleclick.net analytics.twitter.com px.ads.linkedin.com analytics.twitter.com bat.bing.com browser-update.org c.bing.com c.clarity.ms classify.gofurther.com d21y75miwcfqoq.cloudfront.net di.rlcdn.com fa.aidemsrv.com fml-x.com franklintempletonprod.widen.net pixel.sitescout.com platform.twitter.com px.ads.linkedin.com r.turn.com resources.digital-cloud-west.medallia.com rtp-static.marketo.com sp.analytics.yahoo.com syndication.twitter.com t.co tr.outbrain.com tk-static.fml-x.com www.google.at www.google.be www.google.bg www.google.ca www.google.ch www.google.cn www.google.co.il www.google.co.in www.google.co.jp www.google.co.kr www.google.co.nz www.google.co.th www.google.co.uk www.google.co.za www.google.com.ar www.google.com.au www.google.com.bn www.google.com.br www.google.com.cy www.google.com.hk www.google.com.im www.google.com.mt www.google.com.mx www.google.com.my www.google.com.ph www.google.com.sg www.google.com.sl www.google.com.tr www.google.com.tw www.google.com.ua www.google.com.uy www.google.cz www.google.de www.google.dk www.google.ee www.google.es www.google.fi www.google.fr www.google.gr www.google.hu www.google.ie www.google.it www.google.jo www.google.li www.google.lt www.google.lu www.google.lv www.google.nl www.google.no www.google.pl www.google.pt www.google.ro www.google.ru www.google.si www.google.sk assets.adoberesources.net lh3.googleusercontent.com; font-src 'self' data: *.ftsites.com fonts.googleapis.com fonts.gstatic.com templeton.com *.franklintempleton.com *.franklintempleton.lu *.typekit.net; style-src 'self' 'unsafe-inline' *.franklintempleton.com *.ftsites.com *.googletagmanager.com *.kampyle.com *.marketo.com fonts.googleapis.com fonts.gstatic.com platform.twitter.com *.typekit.net; worker-src blob: *.decibel.net; frame-ancestors 'none'; Control resources the user agent is allowed to load for a given page.

Click to learn more...
Referrer-PolicyControl how much referrer information should be included with requests.

Click to learn more...
Clear-Site-DataControl the data stored by a client browser for their origins.

Click to learn more...
X-Permitted-Cross-Domain-PoliciesControl whether a web client such as Adobe Flash Player or Adobe Acrobat has permission to handle data across domains.

Click to learn more...
Permissions-PolicyAllow and deny the use of browser features in a document or iframe.

Click to learn more...
Cross-Origin-Embedder-PolicyConfigure embedding cross-origin resources into the document.

Click to learn more...
Cross-Origin-Opener-PolicyEnsure a top-level document does not share a browsing context group with cross-origin documents.

Click to learn more...
Cross-Origin-Resource-PolicyRequest that the browser blocks no-cors cross-origin/cross-site requests to the given resource.

Click to learn more...
X-XSS-Protection1; mode=blockDeprecated. Stops pages from loading when they detect reflected cross-site scripting (XSS) attacks.

Click to learn more...
Feature-PolicyDeprecated. Replaced by the Permissions-Policy header.

Click to learn more...
Expect-CTDeprecated. Opt in to reporting and/or enforcement of Certificate Transparency requirements.

Click to learn more...
Public-Key-PinsDeprecated. Allows HTTPS websites to resist impersonation by attackers using mis-issued or otherwise fraudulent certificates.

Click to learn more...

Security Violations · 0 found

Requests or resources offending security policies

Certificates · 34 found

SSL/TLS Certificates enable websites to encrypt transactions between the client and the server and provide server identity verification

SubjectIssue dateExpiry date
franklintempleton.comDec 27, 2024, 02:54:17Mar 27, 2025, 03:54:13
cookielaw.orgDec 9, 2024, 19:16:11Mar 9, 2025, 20:16:09
cloudflareinsights.comDec 30, 2024, 10:58:15Mar 30, 2025, 11:58:10
*.google-analytics.comDec 2, 2024, 08:35:56Feb 24, 2025, 08:35:55
geolocation.onetrust.comDec 9, 2024, 18:59:53Mar 9, 2025, 19:59:51
www.google.comDec 2, 2024, 08:37:44Feb 24, 2025, 08:37:43
snap.licdn.comDec 2, 2024, 00:00:00Dec 1, 2025, 23:59:59
ads-twitter.comJun 25, 2024, 00:00:00Jun 24, 2025, 23:59:59
www.bing.comDec 15, 2024, 07:52:28Jun 13, 2025, 07:52:28
*.qualtrics.comMar 27, 2024, 00:00:00Feb 19, 2025, 23:59:59