HTTP Headers: webmd.com
Security score: 60/100
🛡️ Security Headers
| Header | Status |
|---|---|
| Strict-Transport-Security | ✅ Present |
| Content-Security-Policy | ❌ Missing |
| X-Content-Type-Options | ✅ Present |
| X-Frame-Options | ✅ Present |
| X-XSS-Protection | ❌ Missing |
📋 All Response Headers
Access-Control-Allow-Origin Age CF-Cache-Status CF-Edge-Cache-Control CF-RAY Cache-Control Connection Content-Encoding Content-Security-Policy Content-Type Date NEL Report-To Server Set-Cookie Vary X-Backend X-Backend-By X-Cache X-Cache-Control-By X-Cache-Duration X-Cache-Expiry X-Cache-Reason X-Cache-Time X-DataCenter X-Dbg-Gt X-Edge-Cache-Duration X-Edge-Cache-Expiry X-Gt-Setter X-Redis X-Route X-Route-Akamai X-Runtime X-True-Client-Ip cf-wrk
🔧 More Tools for Webmd