Privacy Bison

Warnings PrivacyBison publishes warnings when it learns a service has announced a data breach or is found misusing user data. If you believe a warning should be published for PrivacyBison.com

Submit Feedback

Share this page:

Observations based on User Activity File

General Security Checks

Check for directory traversal vulnerabilitiesVerify the absence of sensitive files within your web application domain.

10.0/10

Check for directory traversal vulnerabilitiesVerify the absence of sensitive files within your web application domain.

10.0/10

Check for open system vulnerabilities.Check if there are any open system ports within your web application domain or its associated sub-domains.

10.0/10

Check for open system vulnerabilities.Check if there are any open system ports within your web application domain or its associated sub-domains.

10.0/10

Check for default database credentialsVerify if the web application or any of its associated sub-domains have default database credentials.

10.0/10

Check for default database credentialsVerify if the web application or any of its associated sub-domains have default database credentials.

10.0/10

Privacy Checks

Check for data exfiltration through cookiesVerify if your web application sets insecure cookies, includes third-party cookies (such as marketing or advertisement related), or contains tracking-related cookies.

6.1/10

Check for data exfiltration through cookiesVerify if your web application sets insecure cookies, includes third-party cookies (such as marketing or advertisement related), or contains tracking-related cookies.

6.1/10

Cookie attribute verificationEnsure compliance with security standards and prevent potential vulnerabilities by examining cookie attributes such as security settings, domain scope, expiration time, and HTTP-only status.

6.8/10

Cookie attribute verificationEnsure compliance with security standards and prevent potential vulnerabilities by examining cookie attributes such as security settings, domain scope, expiration time, and HTTP-only status.

6.8/10

Application Security Checks

Check for JavaScript Vulnerabilities in Web ApplicationDetermine if the web application, including all APIs, contains any known JavaScript vulnerabilities.

10.0/10

Check for JavaScript Vulnerabilities in Web ApplicationDetermine if the web application, including all APIs, contains any known JavaScript vulnerabilities.

10.0/10

Subresource Integrity CheckVerify the integrity of subresources to prevent tampering or unauthorized modifications.

10.0/10

Subresource Integrity CheckVerify the integrity of subresources to prevent tampering or unauthorized modifications.

10.0/10

Verify Session Token in URLs for Cross-Site Request Forgery VulnerabilitiesDetermine if the web application's GET requests exhibit any session token patterns and assess vulnerability to cross-session attacks.

10.0/10

Verify Session Token in URLs for Cross-Site Request Forgery VulnerabilitiesDetermine if the web application's GET requests exhibit any session token patterns and assess vulnerability to cross-session attacks.

10.0/10

Several Header ChecksAnalyze website headers for various parameters and configurations.

8.5/10

Several Header ChecksAnalyze website headers for various parameters and configurations.

8.5/10

How we calculate Scoring?

Warnings