What is the security status of hg-daigou.com?

hg-daigou.com has a security score of 35/100, rated as Potentially Unsafe. The website may have security concerns that should be addressed.

Is hg-daigou.com safe to use?

Our security scan shows hg-daigou.com is Potentially Unsafe. SSL security issues detected. Always practice safe browsing habits.

Does hg-daigou.com have viruses?

Our comprehensive security scan analyzes multiple security factors. Based on the overall security score of 35/100, the website is rated as Potentially Unsafe. However, websites can change over time, so always use updated security software.

What is hg-daigou.com's trust score?

hg-daigou.com has a security score of 35/100. This score is based on multiple factors including SSL security, security headers, DNS health, and compliance checks.

Is hg-daigou.com Safe? Security Analysis for 货源通

https://hg-daigou.com

Check if hg-daigou.com is a scam or legitimate. Free security scan and reviews.

RetailChinasmall

JavaScriptjQuery 1.11CSSHTMLBaidu Analytics

Analyzed 9/4/2025Completed 6:37:00 PM

Security Score

HIGH RISK

AI Summary

货源通 is a Chinese wholesale and retail product information platform established in 2010, providing a user-driven marketplace for various product categories including shoes, bags, clothing, watches, and cosmetics. The platform operates as a non-commercial information publishing site where users must complete real-name authentication before posting. It targets a broad audience of suppliers and buyers seeking product sourcing information. The website is structured with multiple subdomains dedicated to specific product categories, indicating a comprehensive product offering. The business model focuses on free information dissemination rather than direct sales, positioning itself as a reference platform in the retail supply chain sector. Technically, the website uses a custom CMS with standard web technologies including JavaScript, jQuery 1.11, CSS, and HTML. It employs Baidu Analytics for user tracking and is hosted with GoDaddy as the registrar, using Alibaba DNS servers. The site is moderately optimized for performance and mobile use but lacks advanced accessibility and SEO features. Security-wise, HTTPS is enabled, but no advanced security headers or DNSSEC are implemented. The use of an outdated jQuery version presents potential vulnerabilities. Privacy compliance is limited, with no cookie consent mechanism and only a basic privacy policy present. Overall, the security posture is moderate with room for improvement in security headers, library updates, and privacy compliance. The domain registration is consistent and trustworthy, with no privacy protection masking registrant details. The site is fully accessible without WAF or blocking mechanisms. Strategic improvements in security and privacy policies would enhance trust and compliance. The platform serves as a useful resource for wholesale sourcing but should address technical and compliance gaps to strengthen its market position and user trust.

Detected Technologies

JavaScriptjQuery 1.11CSSHTMLBaidu Analytics

🧠AI Business Intelligence

Technology stack, business insights, and market analysis powered by AI.

Business Intelligence

Market & Strategic Analysis

货源通 operates as a niche wholesale information platform in China, focusing on retail and e-commerce sectors. Its competitive advantage lies in its comprehensive categorization of product sources and mandatory real-name authentication, which may improve content reliability. The business model is based on free user-generated content, with monetization likely through advertising or premium services, though no explicit revenue streams are detailed. The target customers include small to medium-sized retailers, micro-businesses, and individual resellers. The presence of multiple subdomains and category-specific channels suggests a broad partnership ecosystem. Growth indicators are limited but the domain age and content volume imply an established presence. Strategic observations include the need for enhanced privacy compliance and security to meet evolving regulatory requirements and user expectations.

Extracted Contact Information

Marketing Intelligence Data

Email Addresses (1)

g*****@sxdx189.com

Security Posture Analysis

Comprehensive Security Assessment

The website demonstrates a basic security maturity level with HTTPS enabled and domain status protections in place. However, the absence of DNSSEC, security HTTP headers, and use of outdated JavaScript libraries indicate vulnerabilities that could be exploited. There is no visible incident response or security policy documentation, and privacy compliance is minimal. The lack of cookie consent mechanisms and detailed privacy policies suggests GDPR and other regulatory gaps. These issues pose moderate business risks, including potential data breaches and regulatory penalties. Enhancing security controls, updating libraries, and implementing privacy best practices are recommended to improve the security posture and reduce risk exposure.

Strategic Recommendations

Priority Actions for Security Improvement

Enable DNSSEC to protect against DNS spoofing and improve domain security.

✨Observations

AI-powered comprehensive website and business analysis.

AI-Enhanced Website Analysis

Business Insights

Company:

货源通

Description:

货源通是一个综合货源分类信息网，属于非经营性质的网站，货源信息由用户自行注册自行发布或投稿发布，网站目前有各种行业货源信息提供广大网民参考用途，覆盖行业有：鞋子、包包、服饰、手表、化妆品等。

Key Services:

货源信息发布货源信息浏览商家入驻微商入驻

Content Quality:

basic

Branding:

moderate

Technical Stack

Technologies:

JavaScriptjQuery 1.11CSSHTMLBaidu Analytics

Performance:

moderate

Mobile:

basic

Accessibility:

basic

SEO:

basic

Security Assessment

Security Score:

50/100

Best Practices:

HTTPS enabled
Domain status includes clientDeleteProhibited etc.

Analytics & Tracking

Services:

Baidu Analytics

Tracking Level:moderate

Privacy Compliance:poor

Advertising & Marketing

Tracking Pixels:

Baidu Analytics

Transparency Level:basic

Website Quality Assessment

Design Quality:basic

User Experience:basic

Content Relevance:good

Navigation Clarity:basic

Professionalism:basic

Trustworthiness:moderate

Key Observations

Website is a Chinese language wholesale product information platform.

🛡️Security Headers

HTTP security headers analysis and recommendations.

Security Headers

HTTP security headers analysis

30/100

Score

Missing Strict-Transport-Security header

HIGH

Forces HTTPS connections

Missing X-Content-Type-Options header

MEDIUM

Prevents MIME type sniffing

Critical sector without clear security compliance

HIGH

Detected sectors: energy, digital

📧Email Security

SPF, DKIM, and DMARC validation and email security assessment.

Email Security

SPF, DKIM, and DMARC validation

60/100

Score

No DKIM record found

MEDIUM

DKIM adds cryptographic signatures to emails

No BIMI Record

LOW

BIMI displays brand logos in email clients

No MTA-STS Policy

MEDIUM

MTA-STS enforces TLS for email delivery

No TLS-RPT Record

LOW

TLS-RPT provides reporting for email TLS issues

No email authentication configured

CRITICAL

Domain is vulnerable to email spoofing

SPF

Sender Policy Framework

DKIM

DomainKeys Identified Mail

DMARC

Domain-based Message Authentication

MX Records

Mail Exchange Records

BIMI

Brand Indicators

MTA-STS

Mail Transfer Agent Security

TLS-RPT

TLS Reporting

DNSSEC

DNS Security

🏆SSL/TLS Security

Certificate validity and encryption analysis.

SSL/TLS Security

Certificate validity and encryption analysis

0/100

Score

Unable to retrieve SSL certificate

CRITICAL

Could not establish secure connection to retrieve certificate information

Mixed Content Detected

MEDIUM

86 resources loaded over insecure HTTP

OCSP Status

OCSP Stapling Disabled

📊DNS Health

DNS configuration and security assessment.

DNS Health

DNS configuration and security assessment

75/100

Score

DNSSEC Not Enabled

MEDIUM

DNSSEC is not configured for this domain

CAA Records Not Configured

LOW

Certificate Authority Authorization (CAA) records not found

No DMARC Record

MEDIUM

DMARC policy not configured

Domain Registration Details

Domain Age

15 years(mature)

Expiry Risk

none(537 days)

Protection Level

strongDNSSEC OFF

DNS Records

A Records:103.96.150.7

Name Servers:

vip3.alidns.com

vip4.alidns.com

SOA:Serial: 2025080107, TTL: 600s

DNSSEC Status

DNSSEC Not Enabled

DNS Performance

Resolution Time:89ms

⚡Network Security

Port scanning and network exposure analysis.

Network Security

Port scanning and network exposure analysis

0/100

Score

Critical Service Exposed: MySQL

CRITICAL

Port 3306 (MySQL) is publicly accessible - MySQL - Database server

🔧Technical Analysis

Detailed technical findings and analysis from AI assessment.

Technical Analysis

Comprehensive security assessment findings

Additional Findings

The website is built on a custom CMS platform using standard web technologies including HTML, CSS, JavaScript, and jQuery 1.11. It integrates Baidu Analytics for tracking and uses Alibaba DNS servers with domain registration via GoDaddy. Performance is moderate with basic mobile optimization and SEO practices. The site lacks modern accessibility features and advanced SEO metadata. The technical debt is evident in the use of outdated libraries and missing security enhancements. Opportunities exist to modernize the tech stack, improve performance, and enhance security controls to support business continuity and user trust.

Analyze Another Website

Is hg-daigou.com a Scam? Security Check Results - 货源通 Reviews

Is hg-daigou.com Safe? Security Analysis for 货源通

AI Summary

Detected Technologies

🧠AI Business Intelligence

Business Intelligence

Extracted Contact Information

Email Addresses (1)

Security Posture Analysis

Strategic Recommendations

✨Observations

AI-Enhanced Website Analysis

Business Insights

Technical Stack

Security Assessment

Analytics & Tracking

Advertising & Marketing

Website Quality Assessment

Key Observations

🛡️Security Headers

Security Headers

Missing Strict-Transport-Security header

Missing X-Content-Type-Options header

Missing Content-Security-Policy header

Missing X-XSS-Protection header

Missing Referrer-Policy header

Missing Permissions-Policy header

Sensitive data may be cached

👤GDPR Compliance

GDPR Compliance

No Privacy Policy found

No Cookie Policy found

No Cookie Consent Banner found

GDPR Compliance Analysis

🛡️NIS2 Compliance

NIS2 Compliance

No information security framework found

No vulnerability disclosure policy

No security policy documentation found

No incident response procedures found

No business continuity planning found

No security contact information

No vulnerability reporting mechanism

No NIS2 reference found

Critical sector without clear security compliance

📧Email Security

Email Security

No DKIM record found

No BIMI Record

No MTA-STS Policy

No TLS-RPT Record

No email authentication configured

🏆SSL/TLS Security

SSL/TLS Security

Unable to retrieve SSL certificate

Mixed Content Detected

OCSP Status

📊DNS Health

DNS Health

DNSSEC Not Enabled

CAA Records Not Configured

No DMARC Record

Domain Registration Details

DNS Records

DNSSEC Status

DNS Performance

⚡Network Security

Network Security

Critical Service Exposed: MySQL

🔧Technical Analysis

Technical Analysis

Additional Findings

Related Partner Domains

xie.hg-daigou.com

bao.hg-daigou.com

yi.hg-daigou.com