https://gnius.esante.gouv.fr

6 jours

Copie d'écran de https://gnius.esante.gouv.fr

Nmap

Scan Summary :

B

severity	service	vulnerability
info	http (port:80)
info	https (port:443)
info	NFS-or-IIS (port:1025)
info	LSA-or-nterm (port:1026)

Consulter le rapport détaillé

Mozilla HTTP observatory

Scan Summary :

B

Impact	Description	Documentation
-25	Content Security Policy (CSP) header not implemented	Implement one, see MDN's Content Security Policy (CSP) documentation.
-5	Subresource Integrity (SRI) not implemented, but all external scripts are loaded over HTTPS.	Add SRI to external scripts.

Rapport détaillé

SSL

Scan Summary :

A+

Expiration : 30/08/2025

Rapport détaillé

Scan OWASP6 jours

risk	name
Medium (High)	Content Security Policy (CSP) Header Not Set
Medium (High)	Sub Resource Integrity Attribute Missing
Low (Medium)	Big Redirect Detected (Potential Sensitive Information Leak)
Low (Medium)	Cross-Domain JavaScript Source File Inclusion
Low (Medium)	Insufficient Site Isolation Against Spectre Vulnerability
Low (Medium)	Permissions Policy Header Not Set
Informational (High)	Sec-Fetch-Dest Header is Missing
Informational (High)	Sec-Fetch-Mode Header is Missing
Informational (High)	Sec-Fetch-Site Header is Missing
Informational (High)	Sec-Fetch-User Header is Missing
Informational (Medium)	Base64 Disclosure
Informational (Medium)	Modern Web Application
Informational (Medium)	Storable and Cacheable Content
Informational (Low)	Re-examine Cache-control Directives

Rapport détaillé