Confusing Reports

  • Received a report from WPscan this morning stating it appears one of my sites is not using https and is not secure. When I load the homepage in the current version of Firefox, the lock/icon has an exclamation mark and when clicked, it states, “Connection not secure. Parts of this page are not secure, (such as images).” Then when I rerun the the https test, it states, “Your website seems to be using HTTPS.”

    Why would that be?? When I refreshed the page, the lock/icon showed as secure; Firefox apparently now sees it as secure; but what would have triggered the unsecured flag in FF that appears to also have been picked up by wpscan? And more importantly, how can images (or other files) not be covered by the certificate?? All the images on the site are within the public_html on the hosting server, none are pulled from outside; at least as long as no one has tampered with them.
    Anyone able to provide some insights please?
    Thanks in advance.

Viewing 2 replies - 1 through 2 (of 2 total)
  • Plugin Contributor ethicalhack3r

    (@ethicalhack3r)

    Hi Richard,

    Apologies for the delayed response.

    Could you email us your website URL, please?

    contact-at-wpscan.com

    Also, what hosting provider are you using?

    Thanks,
    Ryan

    Thread Starter RichardWantsToKnow

    (@richardwantstoknow)

    You requested I email you my URL and hosting provider. Problem is, the email you sent me is from a ‘noreply’ email address. Not comfortable posting hosting info on a public forum.

Viewing 2 replies - 1 through 2 (of 2 total)
  • The topic ‘Confusing Reports’ is closed to new replies.