HTTP Headers: morningstar.com
Security score: 60/100
🛡️ Security Headers
| Header | Status |
|---|---|
| Strict-Transport-Security | ✅ Present |
| Content-Security-Policy | ❌ Missing |
| X-Content-Type-Options | ✅ Present |
| X-Frame-Options | ✅ Present |
| X-XSS-Protection | ❌ Missing |
📋 All Response Headers
Accept-Ranges Age Apigw-Requestid Connection Content-Encoding Content-Length Content-Type Date ETag Server Set-Cookie Vary Via X-Amz-Cf-Id X-Amz-Cf-Pop X-Cache X-Powered-By X-Render-Time X-Stack-Name cache-control content-security-policy referrer-policy x-content-type-options x-frame-options x-xss-protection
🔧 More Tools for Morningstar