XploitScan

Find and fix security vulnerabilities in AI-generated code. 158 rules. Built for Cursor, Lovable, Bolt, and Replit users. Free to start.

0% unique tagline (similar to Critik)

www.xploitscan.com · Added April 13, 2026 · Last analysed April 13, 2026· via

This analysis is a snapshot taken on 13 April 2026. The site may have changed since then and results may not reflect its current state.

9.2

StackScope Score

Excellent

25/100 Vibe Score

Some AI signals

100/100 Launch Readiness

Launch ready

6/6 Security Headers

Strong

neutral

AI Stance

No AI stance declared

Tech Stack (17)

Infrastructure

CDN	Cloudflare
DNS	Wix DNS
Hosting	Vercel
Security	Cloudflare Bot Management
Security	HSTS

Business email	Google Workspace
Transactional email	Resend
Transactional email	SendGrid

Build & Framework

Auth	Clerk
Captcha	Cloudflare Turnstile
CSS framework	Tailwind CSS
Framework	React
Meta-framework	Next.js

Analytics & Marketing

SEO	Google Search Console
Social	X (Twitter)

Commerce & Payments

Payments	Stripe

Business Tools

Error tracking	Sentry

Infrastructure

Hosting

AMAZON-02 - Amazon.com, Inc., US

AS16509 · US

SSL Certificate

Let's Encrypt

Expires 22 Jun 2026

Domain Age

20 days

Registered Mar 2026 · Wix.com Ltd.

Readiness Breakdown How?

✓ Favicon present

✓ Open Graph tags (title, image, description)

✓ Canonical URL declared

✓ Responsive viewport meta tag

✓ Custom title and meta description

✓ Twitter card meta tags

✓ Semantic HTML (nav, main, article)

✓ Privacy policy page present

- Source maps not exposed in production

- Error tracking service installed

Vibe Score Breakdown How?

Signal	Points
Conventional call-to-action copy	+5
Conventional landing-page palette	+5
Distinctive copy style	+5
Conventional AI tooling combination	+10

This score is based on structural patterns and is not definitive. Many legitimate sites may trigger signals, and AI-built sites may go undetected. It should be treated as an indicator, not a verdict.

Well-Known Files

✓ robots.txt

✗ llms.txt

✗ security.txt

✓ sitemap.xml

✗ ads.txt

✗ humans.txt

Legal

✓ Privacy Policy

✓ Terms of Service

88% unique

Mentions:

GDPR CCPA Cookies Do Not Sell Updated: April 9, 2026

Security Headers (6/6)

✓ Referrer-Policy

✓ X-Frame-Options

✓ Permissions-Policy

✓ X-Content-Type-Options

✓ Content-Security-Policy

✓ Strict-Transport-Security

– X-XSS-Protection (legacy)

DMARC

✗ p=none None (monitoring only)

Performance

873ms response time

Faster than 14% of sites

3 third-party domains loaded

Build

✓ HTML minified

17 JS files

3 Third-party domains

Is this your site? 2 optional suggestions

- Add a /.well-known/security.txt so security researchers can reach you. Learn more

- Consider adding a llms.txt file to help AI models understand your site. Not yet a standard, but gaining adoption. Learn more

Embed this score on your site

Copy this HTML:

<a href="https://stackscope.dev/launch/6ogf0oam/xploitscan"><img src="https://stackscope.dev/badge/6ogf0oam.svg" alt="StackScope Score" height="28" /></a>