Scan your site now

Security Report Summary
D
Site:
Scanned Site(s):
1
IP Address:
203.162.31.118
Report Time:
13 Nov 2019 05:51:43 UTC
Checks:
Iframe Sandboxing
Crossorigin
Integrity
Link Referrer
Link Opener
Unsafe Resource
Password Pattern
Unsafe Meta
Csrf Tokens
Enabled Debugging
Warning:
Please have a look at the security issues / warnings in the report.
Security Issues
Unsafe Resource
If a resource is loaded over src="http://...", it may not be transmitted over the TLS protocol. In case the webpage is loaded over HTTPS, this results in a mixed content situation where the page is securely loaded but has unencrypted resources embedded. This will often lead to a mixed-content browser warning, but at the time this is reported, it is most likely to late and the attack could have already succeeded.
  • <script src="http://mondialhotel.com.vn/themes/default/assets/plugins/html5gallery/html5gallery.js" type="text/javascript"></script>[http://mondialhotel.com.vn/]
  • <script src="http://mondialhotel.com.vn/themes/default/assets/js/frontend/jquery.min.js"></script>[http://mondialhotel.com.vn/]
  • <script src="http://mondialhotel.com.vn/themes/default/assets/js/frontend/jquery-ui.min.js"></script>[http://mondialhotel.com.vn/]
  • <script src="http://mondialhotel.com.vn/themes/default/assets/plugins/bootstrap/js/bootstrap.min.js"></script>[http://mondialhotel.com.vn/]
  • <script src="http://mondialhotel.com.vn/themes/default/assets/plugins/slider-swiper/dist/js/swiper.min.js" type="text/javascript"></script>[http://mondialhotel.com.vn/]
  • <script src="http://mondialhotel.com.vn/themes/default/assets/plugins/slick-1.6.0/slick/slick.min.js" type="text/javascript"></script>[http://mondialhotel.com.vn/]
  • <script src="http://mondialhotel.com.vn/themes/default/assets/js/frontend/jquery.validate.min.js" type="text/javascript"></script>[http://mondialhotel.com.vn/]
  • <script src="http://mondialhotel.com.vn/themes/default/assets/js/frontend/index.min.js" type="text/javascript"></script>[http://mondialhotel.com.vn/]
  • <link href="http://mondialhotel.com.vn/themes/default/assets/img/logo/favicon.ico" rel="shortcut icon" type="image/x-icon"></link>[http://mondialhotel.com.vn/]
  • <link href="http://mondialhotel.com.vn/themes/default/assets/plugins/font-awesome-4.7.0/css/font-awesome.min.css" rel="stylesheet"></link>[http://mondialhotel.com.vn/]
  • <link href="http://mondialhotel.com.vn/themes/default/assets/plugins/bootstrap/css/bootstrap.min.css" rel="stylesheet"></link>[http://mondialhotel.com.vn/]
  • <link href="http://mondialhotel.com.vn/themes/default/assets/plugins/slider-swiper/dist/css/swiper.min.css" rel="stylesheet"></link>[http://mondialhotel.com.vn/]
  • <link href="http://mondialhotel.com.vn/themes/default/assets/plugins/slick-1.6.0/slick/slick.css" rel="stylesheet"></link>[http://mondialhotel.com.vn/]
  • <link href="http://mondialhotel.com.vn/themes/default/assets/plugins/slick-1.6.0/slick/slick-theme.css" rel="stylesheet"></link>[http://mondialhotel.com.vn/]
  • <link href="http://mondialhotel.com.vn/themes/default/assets/css/frontend/tour.min.css?v=001" rel="stylesheet"></link>[http://mondialhotel.com.vn/]
  • <link href="http://mondialhotel.com.vn/themes/default/assets/css/frontend/style.min.css?v=002" rel="stylesheet"></link>[http://mondialhotel.com.vn/]
  • <img alt="" src="http://mondialhotel.com.vn/themes/default/assets/img/logo/modial-hue.png"></img>[http://mondialhotel.com.vn/]
  • <img alt="slider1.jpg" src="http://mondialhotel.com.vn/media/gallery/1ac9df8477f6aee1b20d02a3dd5b6dd548d310cf.jpg"></img>[http://mondialhotel.com.vn/]
  • <img alt="4.jpg" src="http://mondialhotel.com.vn/media/gallery/fbb6a303945538dec67e9b38319094b088489862.jpg"></img>[http://mondialhotel.com.vn/]
  • <img alt="SLIDE1.png" src="http://mondialhotel.com.vn/media/gallery/c73cce85937f05e688a800ecf23065429c915597.png"></img>[http://mondialhotel.com.vn/]
  • <img alt="img4.png" src="http://mondialhotel.com.vn/media/gallery/729fb4f9a6fb148e76fd02227b7c2060b53f6ba9.png"></img>[http://mondialhotel.com.vn/]
  • <img alt="" src="http://mondialhotel.com.vn/themes/default/assets/img/icon/if_cloud.png"></img>[http://mondialhotel.com.vn/]
  • <img class="trip2" src="http://mondialhotel.com.vn/themes/default/assets/img/icon/tripadvisor-HOVER1.png"></img>[http://mondialhotel.com.vn/]
  • <img alt="Logo" src="http://mondialhotel.com.vn/themes/default/assets/img/logo/Layer-2.png" title="Logo"></img>[http://mondialhotel.com.vn/]
  • <img alt="1.2.JPG" src="http://mondialhotel.com.vn/media/gallery/31fcdbfb2600094d07ab0cb15c6ae4ebcc701b85.JPG"></img>[http://mondialhotel.com.vn/]
  • <img alt="5.JPG" src="http://mondialhotel.com.vn/media/gallery/4e2a3335eddcc45db8b679bba746d49b9330fec1.JPG"></img>[http://mondialhotel.com.vn/]
  • <img alt="1.JPG" src="http://mondialhotel.com.vn/media/gallery/5cb3523ed818d94102b37fa2778a42abc5ae87b3.JPG"></img>[http://mondialhotel.com.vn/]
  • <img alt="5.1.JPG" src="http://mondialhotel.com.vn/media/gallery/cb685a190dd0f4c1ffbb62a10085aae239326e31.JPG"></img>[http://mondialhotel.com.vn/]
  • <img alt="Perfume Restaurant 9th floor.jpg" src="http://mondialhotel.com.vn/media/gallery/ab823d8ca17ff879103605c643da7ce0b8cd771a.jpg"></img>[http://mondialhotel.com.vn/]
  • <img alt="1.1.JPG" src="http://mondialhotel.com.vn/media/gallery/e94d3b37ef99a736fae939bf6073ac58dfbb20dc.JPG"></img>[http://mondialhotel.com.vn/]
  • <img alt="TR1_5734.jpg" src="http://mondialhotel.com.vn/media/gallery/032329d60b7210809148439c6265a1c3c78de85d.jpg"></img>[http://mondialhotel.com.vn/]
  • <img alt="1.2.JPG" src="http://mondialhotel.com.vn/media/gallery/c5e145c13d2985753ea95d34d01af582b372f760.JPG"></img>[http://mondialhotel.com.vn/]
  • <img alt="13 new.jpg" src="http://mondialhotel.com.vn/media/gallery/e2136f6a0849bcbb2484e8e75a5c52fcec7c6d6c.jpg"></img>[http://mondialhotel.com.vn/]
  • <img alt="Logo" src="http://mondialhotel.com.vn/themes/default/assets/img/logo/Logo.png" title="Logo"></img>[http://mondialhotel.com.vn/]
  • <img alt="Congthuong" src="http://mondialhotel.com.vn/themes/default/assets/img/congthuong.png" style="width: 200px" title="Congthuong"></img>[http://mondialhotel.com.vn/]
  • <img alt="" src="http://mondialhotel.com.vn/themes/default/assets/img/curved-bar.gif" width="200px"></img>[http://mondialhotel.com.vn/]
Crossorigin
The crossorigin="anonymous" attribute should always be added to external ressources so no user credentials are transmitted. By loading external files with a GET request, http user credentials are exchanged by default. If the source host is corrupted, an attacker could these details for attacks.
  • <link href="https://fonts.googleapis.com/css?family=Montserrat:500" rel="stylesheet"></link>[http://mondialhotel.com.vn/]
  • <link href="https://fonts.googleapis.com/css?family=Playfair+Display" rel="stylesheet"></link>[http://mondialhotel.com.vn/]
Integrity
The integrity="sha256-..." attribute should always be added to external file hosted on another domain, because an unexpected manipulation / corruption of the code can lead to session hijacking or similar script releated attacks.
  • <link href="https://fonts.googleapis.com/css?family=Montserrat:500" rel="stylesheet"></link>[http://mondialhotel.com.vn/]
  • <link href="https://fonts.googleapis.com/css?family=Playfair+Display" rel="stylesheet"></link>[http://mondialhotel.com.vn/]
Link Referrer
The rel="noreferrer" attribute should always be added to external links to prevent reverse tabnabbing for older browser, which do not support the rel="noopener" attribute and to prevent phishing attacks.
  • <a class="btn btn-default btn-main btn-booking" href="https://redirect.fastbooking.com/DIRECTORY/dispoprice.phtml?showPromotions=1&Hotelnames=ASIAVNHTLMondial&Clusternames=ASIAVNHTLMondial" target="_blank">BOOK NOW</a>[http://mondialhotel.com.vn/]
  • <a href="https://www.facebook.com/mondialhotelhue.com.vn/" target="_blank"> <i aria-hidden="true" class="fa fa-facebook"></i> </a>[http://mondialhotel.com.vn/]
  • <a href="https://www.tripadvisor.com/Hotel_Review-g293926-d1930434-Reviews-Mondial_Hotel_Hue-Hue_Thua_Thien_Hue_Province.html" target="_blank"> <img class="trip2" src="http://mondialhotel.com.vn/themes/default/assets/img/icon/tripadvisor-HOVER1.png"></img></a>[http://mondialhotel.com.vn/]
  • <a class="btn-book btn-main btn-booking" href="https://redirect.fastbooking.com/DIRECTORY/dispoprice.phtml?showPromotions=1&Hotelnames=ASIAVNHTLMondial&Clusternames=ASIAVNHTLMondial" target="_blank">Book your stay</a>[http://mondialhotel.com.vn/]
  • <a class="btn-book btn-main box-btn btn-detail btn-booking" href="https://redirect.fastbooking.com/DIRECTORY/dispoprice.phtml?showPromotions=1&Hotelnames=ASIAVNHTLMondial&Clusternames=ASIAVNHTLMondial" target="_blank">Book your stay</a>[http://mondialhotel.com.vn/]
  • <a class="btn-book btn-main box-btn btn-detail btn-booking" href="https://redirect.fastbooking.com/DIRECTORY/dispoprice.phtml?showPromotions=1&Hotelnames=ASIAVNHTLMondial&Clusternames=ASIAVNHTLMondial" target="_blank">Book your stay</a>[http://mondialhotel.com.vn/]
  • <a class="btn-book btn-main box-btn btn-detail btn-booking" href="https://redirect.fastbooking.com/DIRECTORY/dispoprice.phtml?showPromotions=1&Hotelnames=ASIAVNHTLMondial&Clusternames=ASIAVNHTLMondial" target="_blank">Book your stay</a>[http://mondialhotel.com.vn/]
  • <a href="https://www.facebook.com/mondialhotelhue.com.vn/" target="_blank"> <svg height="30" viewbox="88.428 12.828 107.543 207.085" width="30" xmlns="http://www.w3.org/2000/svg"><path d="M158.232 219.912v-94.461h31.707l4.747-36.813h-36.454V65.134c0-10.658 2.96-17.922 18.245-17.922l19.494-.009V14.278c-3.373-.447-14.944-1.449-28.406-1.449-28.106 0-47.348 17.155-47.348 48.661v27.149H88.428v36.813h31.788v94.461l38.016-.001z" fill="#2b5fbf"></path></svg></a>[http://mondialhotel.com.vn/]
  • <a href="https://www.tripadvisor.com/Hotel_Review-g293926-d1930434-Reviews-Mondial_Hotel_Hue-Hue_Thua_Thien_Hue_Province.html" target="_blank"> <svg height="30" id="Layer_2" viewbox="0 0 512.2 320.2" width="30" xmlns="http://www.w3.org/2000/svg"><style>.st0{fill:#2b5fbf}</style><path class="st0" d="M128.2 127.9C92.7 127.9 64 156.6 64 192c0 35.4 28.7 64.1 64.1 64.1 35.4 0 64.1-28.7 64.1-64.1.1-35.4-28.6-64.1-64-64.1zm0 110c-25.3 0-45.9-20.5-45.9-45.9s20.5-45.9 45.9-45.9S174 166.7 174 192s-20.5 45.9-45.8 45.9z"></path><circle class="st0" cx="128.4" cy="191.9" r="31.9"></circle><path class="st0" d="M384.2 127.9c-35.4 0-64.1 28.7-64.1 64.1 0 35.4 28.7 64.1 64.1 64.1 35.4 0 64.1-28.7 64.1-64.1 0-35.4-28.7-64.1-64.1-64.1zm0 110c-25.3 0-45.9-20.5-45.9-45.9s20.5-45.9 45.9-45.9S430 166.7 430 192s-20.5 45.9-45.8 45.9z"></path><circle class="st0" cx="384.4" cy="191.9" r="31.9"></circle><path class="st0" d="M474.4 101.2l37.7-37.4h-76.4C392.9 29 321.8 0 255.9 0c-66 0-136.5 29-179.3 63.8H0l37.7 37.4C14.4 124.4 0 156.5 0 192c0 70.8 57.4 128.2 128.2 128.2 32.5 0 62.2-12.1 84.8-32.1l43.4 31.9 42.9-31.2-.5-1.2c22.7 20.2 52.5 32.5 85.3 32.5 70.8 0 128.2-57.4 128.2-128.2-.1-35.4-14.6-67.5-37.9-90.7zM368 64.8c-60.7 7.6-108.3 57.6-111.9 119.5-3.7-62-51.4-112.1-112.3-119.5 30.6-22 69.6-32.8 112.1-32.8S337.4 42.8 368 64.8zM128.2 288.2C75 288.2 32 245.1 32 192s43.1-96.2 96.2-96.2 96.2 43.1 96.2 96.2c-.1 53.1-43.1 96.2-96.2 96.2zm256 0c-53.1 0-96.2-43.1-96.2-96.2s43.1-96.2 96.2-96.2 96.2 43.1 96.2 96.2c-.1 53.1-43.1 96.2-96.2 96.2z"></path></svg></a>[http://mondialhotel.com.vn/]
  • <a href="javascipt:void(0);"> <svg height="30" viewbox="0 0 141.732 141.732" width="30" xmlns="http://www.w3.org/2000/svg"><g fill="#2b5fbf"><path d="M62.935 89.571h-9.733l6.083-37.384h9.734zM45.014 52.187L35.735 77.9l-1.098-5.537.001.002-3.275-16.812s-.396-3.366-4.617-3.366h-15.34l-.18.633s4.691.976 10.181 4.273l8.456 32.479h10.141l15.485-37.385H45.014zM121.569 89.571h8.937l-7.792-37.385h-7.824c-3.613 0-4.493 2.786-4.493 2.786L95.881 89.571h10.146l2.029-5.553h12.373l1.14 5.553zm-10.71-13.224l5.114-13.99 2.877 13.99h-7.991zM96.642 61.177l1.389-8.028s-4.286-1.63-8.754-1.63c-4.83 0-16.3 2.111-16.3 12.376 0 9.658 13.462 9.778 13.462 14.851s-12.075 4.164-16.06.965l-1.447 8.394s4.346 2.111 10.986 2.111c6.642 0 16.662-3.439 16.662-12.799 0-9.72-13.583-10.625-13.583-14.851.001-4.227 9.48-3.684 13.645-1.389z"></path></g><path d="M34.638 72.364l-3.275-16.812s-.396-3.366-4.617-3.366h-15.34l-.18.633s7.373 1.528 14.445 7.253c6.762 5.472 8.967 12.292 8.967 12.292z" fill="#2b5fbf"></path><path d="M0 0h141.732v141.732H0z" fill="none"></path></svg></a>[http://mondialhotel.com.vn/]
  • <a href="javascipt:void(0);"> <svg height="30" viewbox="0 0 192.756 192.756" width="30" xmlns="http://www.w3.org/2000/svg"><g clip-rule="evenodd" fill-rule="evenodd"><path d="M0 0h192.756v192.756H0V0z" fill="#fff"></path><path d="M96.42 133.041c8.667 7.986 20.306 12.83 32.966 12.83 27.189 0 49.195-22.176 49.195-49.451 0-27.358-22.006-49.535-49.195-49.535-12.66 0-24.299 4.843-32.966 12.83-9.941 9.091-16.229 22.176-16.229 36.705.001 14.529 6.288 27.615 16.229 36.621z" fill="#2b5fbf"></path><path d="M172.041 123.949c0-.85.68-1.529 1.529-1.529.934 0 1.613.68 1.613 1.529 0 .936-.68 1.615-1.613 1.615-.849 0-1.529-.679-1.529-1.615zm1.529 1.276c.68 0 1.273-.596 1.273-1.275s-.594-1.189-1.273-1.189c-.596 0-1.189.51-1.189 1.189s.594 1.275 1.189 1.275zm-.17-.51h-.34v-1.445h.594c.086 0 .256 0 .34.086.17.084.17.17.17.34s-.084.34-.254.34l.34.68h-.426l-.17-.596h-.254v.595-.85h.34c.084 0 .084-.086.084-.17 0-.086 0-.086-.084-.17h-.34v1.19z" fill="#2b5fbf"></path><path d="M112.309 91.153c-.17-1.784-.51-3.483-.85-5.268H81.381c.34-1.784.85-3.483 1.359-5.183h27.275a56.916 56.916 0 0 0-2.039-5.268H84.865a62.38 62.38 0 0 1 2.804-5.268h17.419a44.706 44.706 0 0 0-3.738-5.183h-9.942a48.87 48.87 0 0 1 5.013-5.268c-8.751-7.902-20.307-12.83-33.052-12.83-27.104 0-49.195 22.177-49.195 49.535 0 27.275 22.091 49.451 49.195 49.451 12.745 0 24.3-4.844 33.052-12.83a47.105 47.105 0 0 0 4.929-5.184h-9.942c-1.36-1.699-2.549-3.398-3.739-5.268h17.419a39.517 39.517 0 0 0 2.889-5.268H84.865c-.765-1.699-1.529-3.398-2.125-5.184h27.275c.594-1.699 1.02-3.482 1.443-5.268.34-1.699.68-3.482.85-5.268a51.61 51.61 0 0 0 .256-5.184c0-1.781-.085-3.565-.255-5.264z" fill="#2b5fbf"></path><path d="M172.041 107.891c0-.934.68-1.613 1.529-1.613.934 0 1.613.68 1.613 1.613 0 .85-.68 1.615-1.613 1.615-.849 0-1.529-.766-1.529-1.615zm1.529 1.189c.68 0 1.273-.51 1.273-1.189s-.594-1.189-1.273-1.189c-.596 0-1.189.51-1.189 1.189s.594 1.189 1.189 1.189zm-.17-.51h-.34v-1.359H173.994c.17.086.17.256.17.426 0 .084-.084.254-.254.34l.34.594h-.426l-.17-.51h-.254v.509-.764h.17c.084 0 .17 0 .17-.086.084 0 .084-.084.084-.17 0 0 0-.084-.084-.084 0-.086-.086 0-.17 0h-.17v1.104z" fill="#fff"></path><path d="M79.682 110.695c-1.614.424-2.804.68-3.993.68-2.549 0-4.079-1.615-4.079-4.504 0-.594.085-1.189.17-1.869l.34-1.953.255-1.615L74.669 87.5h5.098l-.595 3.059h3.229l-.765 5.098h-3.229l-1.359 8.326c-.085.426-.085.68-.085.85 0 1.105.51 1.529 1.784 1.529.595 0 1.104-.084 1.614-.17l-.679 4.503zM96.166 110.525c-1.869.51-3.568.764-5.438.764-5.778 0-9.092-3.059-9.092-9.09 0-7.053 3.909-12.151 9.346-12.151 4.333 0 7.137 2.889 7.137 7.391 0 1.531-.17 2.975-.594 5.014H86.904c-.085.34-.085.51-.085.68 0 2.379 1.614 3.568 4.673 3.568 1.954 0 3.653-.424 5.523-1.273l-.849 5.097zm-3.144-12.15v-1.02c0-1.699-.935-2.634-2.549-2.634-1.7 0-2.889 1.274-3.399 3.653h5.948v.001zM38.898 110.949H33.63l3.059-19.286-6.882 19.286h-3.653l-.425-19.201-3.229 19.201h-5.183l4.163-25.064h7.732l.17 15.465 5.183-15.465h8.497l-4.164 25.064zM51.729 101.859c-.51-.086-.68-.086-1.02-.086-3.059 0-4.588 1.189-4.588 3.059 0 1.275.765 2.125 1.954 2.125 2.549 0 3.568-2.125 3.654-5.098zm4.248 9.09h-4.588l.085-2.123c-1.19 1.613-2.804 2.463-5.608 2.463-2.549 0-4.758-2.293-4.758-5.607 0-.934.17-1.783.425-2.633.849-3.145 3.993-5.098 8.836-5.184.595 0 1.529 0 2.379.086.169-.68.169-.936.169-1.36 0-1.36-1.104-1.785-3.568-1.785-1.529 0-3.229.255-4.418.68l-.765.17-.34.084.765-4.588c2.464-.765 4.248-1.104 6.203-1.104 4.588 0 7.052 2.124 7.052 6.032 0 1.02.085 1.785-.255 3.994l-1.189 7.307-.17 1.275-.085 1.02-.085.68-.085.593zM121.826 90.728c1.529 0 2.889.425 4.758 1.359l.934-5.438c-.51-.255-.68-.255-1.359-.51l-2.123-.595c-.68-.17-1.529-.255-2.465-.255-2.635 0-4.164.085-5.777 1.02-.85.595-1.955 1.36-3.145 2.719l-.68-.17-5.438 3.823.256-2.124h-5.609l-3.312 20.391h5.354l1.953-10.959s.766-1.531 1.105-2.039c1.02-1.275 1.869-1.275 2.973-1.275h.426a27.428 27.428 0 0 0-.256 3.908c0 6.627 3.738 10.791 9.516 10.791 1.445 0 2.721-.17 4.674-.68l.936-5.777c-1.699.934-3.229 1.359-4.504 1.359-3.143 0-5.014-2.379-5.014-6.117-.002-5.523 2.803-9.431 6.797-9.431zM166.941 85.885l-1.188 7.137c-1.275-1.954-2.805-2.889-4.844-2.889-2.805 0-5.438 1.614-7.053 4.673v-.084l-3.398-2.04.34-2.124h-5.693l-3.229 20.391h5.268l1.785-10.959s1.359-1.531 1.699-2.039c.85-1.02 1.699-1.191 2.379-1.275-.594 1.699-.934 3.738-.934 6.033 0 5.098 2.633 8.496 6.541 8.496 1.955 0 3.484-.68 4.928-2.295l-.254 2.039h5.014l4.078-25.064h-5.439zm-6.541 20.222c-1.785 0-2.719-1.359-2.719-3.994 0-3.994 1.699-6.882 4.162-6.882 1.869 0 2.805 1.445 2.805 3.994 0 4.078-1.699 6.882-4.248 6.882zM135.846 101.859c-.51-.086-.68-.086-1.02-.086-3.061 0-4.59 1.189-4.59 3.059 0 1.275.766 2.125 1.955 2.125 2.549 0 3.569-2.125 3.655-5.098zm4.248 9.09h-4.674l.17-2.123c-1.189 1.613-2.805 2.463-5.607 2.463-2.635 0-4.928-2.209-4.928-5.607 0-4.842 3.652-7.816 9.43-7.816.596 0 1.529 0 2.295.086.17-.68.256-.936.256-1.36 0-1.36-1.105-1.785-3.654-1.785-1.445 0-3.229.255-4.418.68l-.68.17-.34.084.764-4.588c2.465-.765 4.25-1.104 6.203-1.104 4.588 0 6.967 2.124 6.967 6.032 0 1.02.17 1.785-.254 3.994l-1.105 7.307-.17 1.275-.17 1.02-.084.68v.592h-.001zM67.107 94.891c1.02 0 2.464.085 3.994.34l.765-4.758c-1.53-.17-3.569-.425-4.759-.425-5.947 0-7.901 3.229-7.901 6.967 0 2.465 1.104 4.248 3.993 5.607 2.124 1.02 2.464 1.189 2.464 2.125 0 1.273-1.104 2.039-3.144 2.039-1.614 0-3.144-.256-4.843-.85l-.595 4.672.084.086 1.02.17c.34.084.765.17 1.36.254 1.274.086 2.379.17 3.059.17 5.948 0 8.412-2.293 8.412-6.797 0-2.803-1.36-4.502-3.994-5.691-2.294-1.021-2.549-1.189-2.549-2.125 0-.934 1.02-1.784 2.634-1.784z" fill="#2b5fbf"></path><path d="M128.963 85.035l-.936 5.438c-1.869-.935-3.229-1.359-4.758-1.359-3.994 0-6.797 3.908-6.797 9.431 0 3.824 1.869 6.117 5.014 6.117 1.273 0 2.803-.424 4.502-1.273l-.934 5.691c-1.955.51-3.229.766-4.674.766-5.777 0-9.346-4.164-9.346-10.875 0-8.922 4.928-15.21 11.98-15.21.934 0 1.783.085 2.463.255l2.125.51c.681.255.851.34 1.361.509zM111.799 88.774h-.51c-1.783 0-2.803.85-4.418 3.313l.51-3.144h-4.844l-3.312 20.392h5.354c1.953-12.49 2.463-14.614 5.012-14.614h.34c.51-2.464 1.189-4.249 2.039-5.863l-.171-.084zM81.042 109.08c-1.444.51-2.634.68-3.823.68-2.719 0-4.249-1.529-4.249-4.502 0-.51.085-1.189.17-1.785l.34-2.039.255-1.613 2.294-13.936h5.268l-.595 3.059h2.719l-.68 5.013h-2.719l-1.444 8.497c-.085.34-.085.596-.085.85 0 1.02.51 1.445 1.784 1.445.595 0 1.104 0 1.444-.17l-.679 4.501zM60.565 95.401c0 2.55 1.189 4.333 3.993 5.693 2.209 1.02 2.549 1.359 2.549 2.209 0 1.275-.935 1.869-3.059 1.869-1.614 0-3.059-.254-4.758-.764l-.765 4.672.255.086.935.17c.339.084.765.17 1.444.17 1.189.17 2.209.17 2.889.17 5.607 0 8.242-2.125 8.242-6.797 0-2.805-1.104-4.42-3.738-5.693-2.294-1.02-2.549-1.274-2.549-2.209 0-1.104.935-1.614 2.634-1.614 1.02 0 2.464.085 3.824.255l.764-4.673c-1.359-.255-3.483-.425-4.673-.425-5.948-.001-8.072 3.143-7.987 6.881zM169.662 109.336h-5.014l.256-1.955c-1.445 1.529-2.975 2.209-4.93 2.209-3.908 0-6.457-3.312-6.457-8.41 0-6.798 3.994-12.576 8.666-12.576 2.125 0 3.654.935 5.1 2.804l1.189-7.137h5.268l-4.078 25.065zm-7.818-4.758c2.465 0 4.164-2.889 4.164-6.883 0-2.634-.936-3.994-2.805-3.994-2.379 0-4.162 2.804-4.162 6.798 0 2.72.934 4.079 2.803 4.079zM97.355 108.91c-1.87.596-3.569.85-5.523.85-5.948 0-9.007-3.143-9.007-9.176 0-6.967 3.909-12.15 9.262-12.15 4.418 0 7.221 2.889 7.221 7.392 0 1.53-.17 2.975-.68 5.098H88.094c-.085.256-.085.426-.085.596 0 2.379 1.615 3.568 4.673 3.568 1.954 0 3.653-.34 5.523-1.275l-.85 5.097zm-2.974-12.15v-1.019c0-1.699-.935-2.634-2.549-2.634-1.699 0-2.889 1.275-3.399 3.653h5.948zM40.258 109.336H34.99l3.059-19.288-6.882 19.288h-3.654l-.425-19.118-3.228 19.118h-4.928l4.163-25.065h7.647l.255 15.549 5.097-15.549h8.327l-4.163 25.065zM53.428 100.244c-.51 0-.765-.084-1.19-.084-2.974 0-4.503 1.104-4.503 3.143 0 1.275.68 2.039 1.869 2.039 2.209 0 3.739-2.039 3.824-5.098zm3.908 9.092h-4.419l.085-2.125c-1.36 1.699-3.144 2.465-5.608 2.465-2.889 0-4.843-2.209-4.843-5.523 0-5.012 3.398-7.901 9.346-7.901.595 0 1.36.085 2.209.169.17-.679.17-.934.17-1.274 0-1.359-.935-1.869-3.399-1.869-1.529 0-3.229.17-4.418.51l-.765.255-.51.085.765-4.588c2.634-.765 4.418-1.02 6.373-1.02 4.588 0 7.052 2.039 7.052 5.947 0 1.02-.085 1.785-.425 4.079l-1.19 7.223-.17 1.273-.085 1.02-.085.766-.083.508zM137.545 100.244c-.596 0-.85-.084-1.189-.084-3.059 0-4.59 1.104-4.59 3.143 0 1.275.766 2.039 1.955 2.039 2.125 0 3.738-2.039 3.824-5.098zm3.908 9.092h-4.418l.084-2.125c-1.359 1.699-3.143 2.465-5.607 2.465-2.889 0-4.844-2.209-4.844-5.523 0-5.012 3.398-7.901 9.346-7.901.596 0 1.361.085 2.125.169.17-.679.256-.934.256-1.274 0-1.359-.936-1.869-3.398-1.869-1.531 0-3.314.17-4.504.51l-.68.255-.51.085.764-4.588c2.635-.765 4.418-1.02 6.373-1.02 4.588 0 6.967 2.039 6.967 5.947 0 1.02 0 1.785-.424 4.079l-1.105 7.223-.17 1.273-.17 1.02-.084.766v.508h-.001zM155.727 88.774h-.51c-1.783 0-2.803.85-4.418 3.313l.51-3.144h-4.844l-3.229 20.392h5.268c1.955-12.49 2.465-14.614 5.014-14.614h.34c.51-2.464 1.189-4.249 2.039-5.863l-.17-.084z" fill="#fff"></path></g></svg></a>[http://mondialhotel.com.vn/]
Link Opener
The rel="noopener" attribute should always be added to external links, which open in a new tab, to reduce the risk of reverse tabnabbing. Otherwise javascript on the new page has full control over the previous visited page, including permission to change the DOM object and possibly steal session cookies.
  • <a class="btn btn-default btn-main btn-booking" href="https://redirect.fastbooking.com/DIRECTORY/dispoprice.phtml?showPromotions=1&Hotelnames=ASIAVNHTLMondial&Clusternames=ASIAVNHTLMondial" target="_blank">BOOK NOW</a>[http://mondialhotel.com.vn/]
  • <a href="https://www.facebook.com/mondialhotelhue.com.vn/" target="_blank"> <i aria-hidden="true" class="fa fa-facebook"></i> </a>[http://mondialhotel.com.vn/]
  • <a href="https://www.tripadvisor.com/Hotel_Review-g293926-d1930434-Reviews-Mondial_Hotel_Hue-Hue_Thua_Thien_Hue_Province.html" target="_blank"> <img class="trip2" src="http://mondialhotel.com.vn/themes/default/assets/img/icon/tripadvisor-HOVER1.png"></img></a>[http://mondialhotel.com.vn/]
  • <a class="btn-book btn-main btn-booking" href="https://redirect.fastbooking.com/DIRECTORY/dispoprice.phtml?showPromotions=1&Hotelnames=ASIAVNHTLMondial&Clusternames=ASIAVNHTLMondial" target="_blank">Book your stay</a>[http://mondialhotel.com.vn/]
  • <a class="btn-book btn-main box-btn btn-detail btn-booking" href="https://redirect.fastbooking.com/DIRECTORY/dispoprice.phtml?showPromotions=1&Hotelnames=ASIAVNHTLMondial&Clusternames=ASIAVNHTLMondial" target="_blank">Book your stay</a>[http://mondialhotel.com.vn/]
  • <a class="btn-book btn-main box-btn btn-detail btn-booking" href="https://redirect.fastbooking.com/DIRECTORY/dispoprice.phtml?showPromotions=1&Hotelnames=ASIAVNHTLMondial&Clusternames=ASIAVNHTLMondial" target="_blank">Book your stay</a>[http://mondialhotel.com.vn/]
  • <a class="btn-book btn-main box-btn btn-detail btn-booking" href="https://redirect.fastbooking.com/DIRECTORY/dispoprice.phtml?showPromotions=1&Hotelnames=ASIAVNHTLMondial&Clusternames=ASIAVNHTLMondial" target="_blank">Book your stay</a>[http://mondialhotel.com.vn/]
  • <a href="https://www.facebook.com/mondialhotelhue.com.vn/" target="_blank"> <svg height="30" viewbox="88.428 12.828 107.543 207.085" width="30" xmlns="http://www.w3.org/2000/svg"><path d="M158.232 219.912v-94.461h31.707l4.747-36.813h-36.454V65.134c0-10.658 2.96-17.922 18.245-17.922l19.494-.009V14.278c-3.373-.447-14.944-1.449-28.406-1.449-28.106 0-47.348 17.155-47.348 48.661v27.149H88.428v36.813h31.788v94.461l38.016-.001z" fill="#2b5fbf"></path></svg></a>[http://mondialhotel.com.vn/]
  • <a href="https://www.tripadvisor.com/Hotel_Review-g293926-d1930434-Reviews-Mondial_Hotel_Hue-Hue_Thua_Thien_Hue_Province.html" target="_blank"> <svg height="30" id="Layer_2" viewbox="0 0 512.2 320.2" width="30" xmlns="http://www.w3.org/2000/svg"><style>.st0{fill:#2b5fbf}</style><path class="st0" d="M128.2 127.9C92.7 127.9 64 156.6 64 192c0 35.4 28.7 64.1 64.1 64.1 35.4 0 64.1-28.7 64.1-64.1.1-35.4-28.6-64.1-64-64.1zm0 110c-25.3 0-45.9-20.5-45.9-45.9s20.5-45.9 45.9-45.9S174 166.7 174 192s-20.5 45.9-45.8 45.9z"></path><circle class="st0" cx="128.4" cy="191.9" r="31.9"></circle><path class="st0" d="M384.2 127.9c-35.4 0-64.1 28.7-64.1 64.1 0 35.4 28.7 64.1 64.1 64.1 35.4 0 64.1-28.7 64.1-64.1 0-35.4-28.7-64.1-64.1-64.1zm0 110c-25.3 0-45.9-20.5-45.9-45.9s20.5-45.9 45.9-45.9S430 166.7 430 192s-20.5 45.9-45.8 45.9z"></path><circle class="st0" cx="384.4" cy="191.9" r="31.9"></circle><path class="st0" d="M474.4 101.2l37.7-37.4h-76.4C392.9 29 321.8 0 255.9 0c-66 0-136.5 29-179.3 63.8H0l37.7 37.4C14.4 124.4 0 156.5 0 192c0 70.8 57.4 128.2 128.2 128.2 32.5 0 62.2-12.1 84.8-32.1l43.4 31.9 42.9-31.2-.5-1.2c22.7 20.2 52.5 32.5 85.3 32.5 70.8 0 128.2-57.4 128.2-128.2-.1-35.4-14.6-67.5-37.9-90.7zM368 64.8c-60.7 7.6-108.3 57.6-111.9 119.5-3.7-62-51.4-112.1-112.3-119.5 30.6-22 69.6-32.8 112.1-32.8S337.4 42.8 368 64.8zM128.2 288.2C75 288.2 32 245.1 32 192s43.1-96.2 96.2-96.2 96.2 43.1 96.2 96.2c-.1 53.1-43.1 96.2-96.2 96.2zm256 0c-53.1 0-96.2-43.1-96.2-96.2s43.1-96.2 96.2-96.2 96.2 43.1 96.2 96.2c-.1 53.1-43.1 96.2-96.2 96.2z"></path></svg></a>[http://mondialhotel.com.vn/]
Additional Information
Iframe Sandboxing
The sandbox="" attribute should always be added to iframes with untrusted or third-party sources. The attribute enables different types of iframe content restrictions like script or form execution.
Crossorigin
The crossorigin="anonymous" attribute should always be added to external ressources so no user credentials are transmitted. By loading external files with a GET request, http user credentials are exchanged by default. If the source host is corrupted, an attacker could these details for attacks.
Integrity
The integrity="sha256-..." attribute should always be added to external file hosted on another domain, because an unexpected manipulation / corruption of the code can lead to session hijacking or similar script releated attacks.
Link Opener
The rel="noopener" attribute should always be added to external links, which open in a new tab, to reduce the risk of reverse tabnabbing. Otherwise javascript on the new page has full control over the previous visited page, including permission to change the DOM object and possibly steal session cookies.
Link Referrer
The rel="noreferrer" attribute should always be added to external links to prevent reverse tabnabbing for older browser, which do not support the rel="noopener" attribute and to prevent phishing attacks.
Unsafe Resource
If a resource is loaded over src="http://...", it may not be transmitted over the TLS protocol. In case the webpage is loaded over HTTPS, this results in a mixed content situation where the page is securely loaded but has unencrypted resources embedded. This will often lead to a mixed-content browser warning, but at the time this is reported, it is most likely to late and the attack could have already succeeded.
Password Pattern
The pattern="..." attribute should always be added to password fields, since a client-side password strength can not be enforced by JavaScript, if the user has disabled scripts in his browser. Make sure to perform a second check at sever-side.
Unsafe Meta
The <meta name="generator" content="WordPress x.x"></meta> and the <meta content="deny" http-equiv="X-Frame-Options"></meta> meta-tags should always be removed from the html body since the generator tag provides critical informations about the used CMS and the X-Frame-Options must be specified as HTTP Headers and not as a meta tag. Most browser will ignore the meta tag, which can lead to unintended misbehaviour.
Csrf Tokens
Cross-site request forgery, also known as one-click attack or session riding, is a type of malicious exploit of a website where unauthorized commands are transmitted from a authenticated user on the web application. One way of performing such an attack is to observe the HTML code of a website for session tokens like in <input> tags, which should never be stored inside of the HTML-document.
Enabled Debugging
If the debugging is enabled on a production server, it may give an agressor valuable informations about the inner structure of a web application. These can be used to find vulnerabilities for injections or other type of attacks. Therefore, debugging should always be disabled.
Scanned URL(s)