Skip to main content

Is ueeshop.com a Scam? Security Check Results - 广州联雅网络科技有限公司 Reviews

广

Is ueeshop.com Safe? Security Analysis for 广州联雅网络科技有限公司

https://ueeshop.com

Check if ueeshop.com is a scam or legitimate. Free security scan and reviews.

E-commerceChinamedium
jQuerySwiper.jsWOW.jsGoogle AnalyticsFacebook Pixel+3 more
Analyzed 8/2/2025Completed 5:12:22 PM
61
Security Score
MEDIUM RISK

AI Summary

UEESHOP is a Chinese company specializing in providing independent e-commerce website building platforms primarily targeting cross-border B2B and B2C businesses. Founded in 2007, it claims 18 years of experience and serves over 41,250 paid users. The company offers a proprietary platform with features tailored for international trade, including multi-language support, integrated payment gateways, and marketing tools. The website is professionally designed, mobile-optimized, and rich in content, reflecting a mature digital presence. Technically, the site uses modern JavaScript libraries and tracking tools, with strong SSL implementation but lacks some security headers and cookie consent mechanisms. The WHOIS data for the domain is unavailable, which reduces trust in domain legitimacy despite the professional business presentation. Overall, the company appears credible with a solid market position in the e-commerce platform sector, but improvements in privacy compliance and security best practices are recommended.

Detected Technologies

jQuerySwiper.jsWOW.jsGoogle AnalyticsFacebook PixelLinkedIn Insight TagGoogle Tag ManagerAlibaba PrismPlayer

🧠AI Business Intelligence

Technology stack, business insights, and market analysis powered by AI.

Business Intelligence

Market & Strategic Analysis

UEESHOP operates in the e-commerce sector, focusing on providing independent website solutions for foreign trade and cross-border commerce. Its competitive advantage lies in its specialized platform supporting both B2B and B2C models, extensive customer service including one-on-one consulting, and integration with global payment and marketing networks. The company maintains partnerships with payment processors and marketing platforms, enhancing its ecosystem. Its business model is subscription and service-based, targeting medium-sized enterprises engaged in international trade. The presence of numerous case studies and a large user base indicates steady growth and market acceptance. The company’s strategic focus on seamless integration with global logistics and payment systems positions it well for continued expansion in the cross-border e-commerce market.

Extracted Contact Information

Marketing Intelligence Data

Email Addresses (1)

s*****@ueeshop.com

Phone Numbers (1)

185*******

Physical Addresses (1)

广州市越秀区越秀南路185号创举商务大厦10楼

Security Posture Analysis

Comprehensive Security Assessment

The website enforces HTTPS and integrates PCI DSS certified payment methods, indicating a strong baseline security posture. However, the absence of explicit security headers such as Content Security Policy, HSTS, and X-Frame-Options suggests room for improvement in defense-in-depth strategies. No vulnerabilities or exposed sensitive data were detected in the HTML content. The site uses multiple tracking and marketing scripts, which may increase the attack surface but are common in commercial websites. There is no public incident response or security policy page, nor a vulnerability disclosure program, which limits transparency and readiness perception. Overall, the security posture is good but could be enhanced by implementing recommended headers, cookie consent, and publishing security policies.

Strategic Recommendations

Priority Actions for Security Improvement

1

Implement comprehensive security headers (CSP, HSTS, X-Frame-Options) to strengthen browser security.

Observations

AI-powered comprehensive website and business analysis.

AI-Enhanced Website Analysis

Business Insights

Company:

广州联雅网络科技有限公司

Description:

广州UEESHOP外贸网站建设公司成立于2007年,有18年的外贸建站经验,自主研发跨境电商外贸自建站平台-UEESHOP,至今已服务41250+外贸人,外贸网站建设服务请联系网站客服.

Key Services:
独立站建站平台B2B系统B2C系统推广服务运营指导售后服务
Content Quality:

good

Branding:

consistent

Technical Stack

Technologies:
jQuerySwiper.jsWOW.jsGoogle AnalyticsFacebook PixelLinkedIn Insight TagGoogle Tag ManagerAlibaba PrismPlayer
Platforms:
自研跨境电商建站平台
Performance:

fast

Mobile:

good

Accessibility:

basic

SEO:

good

Security Assessment

Security Score:
85/100
Best Practices:
  • HTTPS enforced
  • No exposed sensitive data in HTML
  • Use of secure payment integrations (PCI DSS certified)

Analytics & Tracking

Services:
Google AnalyticsFacebook PixelLinkedIn Insight Tag360 AnalyticsCNZZ
Tracking Level:extensive
Privacy Compliance:basic

Advertising & Marketing

Ad Networks:
Tencent GDT
Tracking Pixels:
Facebook PixelLinkedIn Insight TagZhihu Tracker360 AnalyticsCNZZ
Marketing Tools:
SaleSmartly
Transparency Level:good

Website Quality Assessment

Design Quality:good
User Experience:good
Content Relevance:good
Navigation Clarity:good
Professionalism:good
Trustworthiness:high

Key Observations

1

Website is fully accessible with rich content and professional design.

🛡️Security Headers

HTTP security headers analysis and recommendations.

Security Headers

HTTP security headers analysis

20/100
Score

Missing Strict-Transport-Security header

HIGH

Forces HTTPS connections

Missing X-Frame-Options header

HIGH

Prevents clickjacking attacks

Missing X-Content-Type-Options header

MEDIUM

Prevents MIME type sniffing

Missing Content-Security-Policy header

HIGH

Controls resources the browser is allowed to load

Missing X-XSS-Protection header

MEDIUM

Legacy XSS protection (deprecated but still recommended)

Missing Referrer-Policy header

LOW

Controls referrer information sent with requests

Missing Permissions-Policy header

MEDIUM

Controls browser features and APIs

👤GDPR Compliance

Privacy and data protection assessment under GDPR regulations.

GDPR Compliance

Privacy and data protection assessment

53/100
Score

No Cookie Policy found

HIGH

GDPR requires clear information about cookie usage

No Cookie Consent Banner found

HIGH

GDPR requires explicit consent for non-essential cookies

No Data Protection Officer mentioned

LOW

Large organizations may need to designate a DPO under GDPR

Privacy policy may not be GDPR compliant

MEDIUM

Privacy policy lacks explicit GDPR compliance elements

GDPR Compliance Analysis

Privacy Policy85% confidence
Cookie Policy0% confidence
Contact Information Found90% confidence
emailphone

🛡️NIS2 Compliance

Network & Information Security Directive compliance assessment.

NIS2 Compliance

Network & Information Security Directive

17/100
Score

No information security framework found

HIGH

NIS2 requires documented cybersecurity and information security measures

No vulnerability disclosure policy

MEDIUM

NIS2 encourages coordinated vulnerability disclosure

No security policy documentation found

HIGH

NIS2 requires documented cybersecurity governance and risk management

No incident response procedures found

HIGH

NIS2 requires documented incident response and business continuity plans

No business continuity planning found

MEDIUM

NIS2 emphasizes operational resilience and business continuity

No security contact information

HIGH

NIS2 requires clear incident reporting channels

No vulnerability reporting mechanism

MEDIUM

Clear vulnerability reporting supports coordinated disclosure

No NIS2 reference found

LOW

Consider explicitly mentioning NIS2 compliance efforts

📧Email Security

SPF, DKIM, and DMARC validation and email security assessment.

Email Security

SPF, DKIM, and DMARC validation

75/100
Score

DMARC not enforcing

MEDIUM

DMARC policy is set to "none"

No BIMI Record

LOW

BIMI displays brand logos in email clients

No MTA-STS Policy

MEDIUM

MTA-STS enforces TLS for email delivery

No TLS-RPT Record

LOW

TLS-RPT provides reporting for email TLS issues

SPF
Sender Policy Framework
DKIM
DomainKeys Identified Mail
DMARC
Domain-based Message Authentication
MX Records
Mail Exchange Records
BIMI
Brand Indicators
MTA-STS
Mail Transfer Agent Security
TLS-RPT
TLS Reporting
DNSSEC
DNS Security
SPF Details
Record:
v=spf1 include:spf.163.com -all
DNS Lookups:1/10
Policy:-all
DKIM Selectors Found
Selector:default(1296-bit rsa)
DMARC Details
Policy:none
Aggregate Reports:dmarc_report@qiye.163.com, dmarc_report@qiye.163.com
Forensic Reports:dmarc@qiye.163.com, dmarc@qiye.163.com

🏆SSL/TLS Security

Certificate validity and encryption analysis.

SSL/TLS Security

Certificate validity and encryption analysis

62/100
Score

Weak Protocols Supported

HIGH

Server supports weak protocols: TLSv1.1

OCSP Stapling Not Enabled

LOW

OCSP stapling improves performance and privacy

Certificate Transparency Not Implemented

LOW

Certificate is not logged in Certificate Transparency logs

SSL Certificate Expires Within 90 Days

MEDIUM

SSL certificate expires in 76 days

Mixed Content Detected

MEDIUM

5 resources loaded over insecure HTTP

Partial SSL/TLS Assessment

LOW

Completed 3 of 4 security checks due to time constraints

Protocol Support

TLSv1.3TLSv1.2TLSv1.1

OCSP Status

OCSP Stapling Disabled

📊DNS Health

DNS configuration and security assessment.

DNS Health

DNS configuration and security assessment

80/100
Score

DNSSEC Not Enabled

MEDIUM

DNSSEC is not configured for this domain

CAA Records Not Configured

LOW

Certificate Authority Authorization (CAA) records not found

DMARC Policy Set to None

LOW

DMARC is configured but not enforcing any policy

DNS Records

A Records:47.243.36.105
Name Servers:
dns17.hichina.comDNS only
dns18.hichina.comDNS only
MX Records:
10: qiye163mx02.mxmail.netease.com
5: qiye163mx01.mxmail.netease.com

DNSSEC Status

DNSSEC Not Enabled

SPF Analysis

SPF Record:
v=spf1 include:spf.163.com -all

Network Security

Port scanning and network exposure analysis.

Network Security

Port scanning and network exposure analysis

100/100
Score

Good Network Security Posture

LOW

No unnecessary services detected on common risky ports

🔧Technical Analysis

Detailed technical findings and analysis from AI assessment.

Technical Analysis

Comprehensive security assessment findings

Additional Findings

The website is built on a custom proprietary CMS platform with a modern JavaScript tech stack including jQuery, Swiper.js, and WOW.js for animations. It integrates multiple third-party analytics and marketing tools such as Google Analytics, Facebook Pixel, LinkedIn Insight Tag, and Tencent GDT. The site is mobile-optimized and performs well with fast loading times aided by CDN usage. However, the lack of detected security headers and cookie consent mechanisms indicates some technical debt in security and privacy compliance. The hosting provider is not explicitly identified. The site’s SEO is well-structured with proper meta tags and JSON-LD structured data. Overall, the technical implementation is solid but could benefit from enhanced security and privacy features.
Analyze Another Website