Content-Security-Policy Analysis for https://eu.123formbuilder.com

Open Cached · just now

10 directives

Content-Security-Policy

Content-Security-Policy: default-src *; worker-src * blob: data:; script-src * 'unsafe-inline' 'unsafe-eval'; object-src * blob: data:; font-src *; img-src * blob: data:; form-action *; frame-ancestors *; upgrade-insecure-requests; style-src * 'unsafe-inline';

default-src Host —

worker-src Host —

worker-src Scheme —

blob:

worker-src Scheme —

data:

script-src Host —

script-src Keyword —

'unsafe-inline'

script-src Keyword —

'unsafe-eval'

object-src Host —

object-src Scheme —

blob:

object-src Scheme —

data:

font-src Host —

img-src Host —

img-src Scheme —

blob:

img-src Scheme —

data:

form-action Host —

frame-ancestors Host —

upgrade-insecure-requests Source —

(no sources)

style-src Host —

style-src Keyword —

'unsafe-inline'

Content-Security-Policy-Report-Only

No report-only CSP headers found.