FreeScan.app Start free audit

New scan Visit scanned site

Public status

completed

HTTP 200

0 redirects

36 checks

Website audit scorecard for studenten.campusmap24.de

The scanner fetched the public page, extracted deterministic facts, and stored scored results across SEO / AEO, security, accessibility, and design.

Submitted

Studenten.campusmap24.de

Final URL

https://studenten.campusmap24.de

Created

Jun 30, 2026, 7:15 AM

Safe fetch

227 ms

Four-score result

Close to ready (Needs polish): 27 passed, 9 failed, and 0 unknown. Strongest area: Security. Weakest area: Accessibility.

Overall

out of 100

SEO / AEO

out of 100

73/92 rule points

Security

out of 100

63/76 rule points

Accessibility

out of 100

54/94 rule points

Design

out of 100

81/110 rule points

Why this scored this way

Scores are deterministic: each category earns rule points for verified public signals and loses points for failed checks. Unknown checks are shown separately instead of guessed.

Category point breakdown

SEO / AEO73/92

Security63/76

Accessibility54/94

Design81/110

Biggest score-losing checks

high

Accessibility

Rendered axe accessibility violations

axe found 3 violation rule(s), including 1 serious or critical rule(s). Top rules: color-contrast (8), region (29), aria-allowed-role (1).

high

Accessibility

Image alt text

Detected 2 image(s) missing alt text out of 23.

high

Security

Common security headers

Detected 2 of 5 common public security headers. Present: x-content-type-options, referrer-policy. Missing: strict-transport-security, content-security-policy, x-frame-options.

high

SEO / AEO

Schema presence

Detected 0 JSON-LD schema block(s).

Recommendations

Score-losing issues ordered by remediation priority, severity, and score impact.

5 fixes

6 opportunities

9 insights

fail

high

Accessibility

Priority 5

Fix rendered axe accessibility violations

-18 rule pts

What failed

The rendered page has accessibility rule violations detected by axe-core.

Evidence

axe found 3 violation rule(s), including 1 serious or critical rule(s). Top rules: color-contrast (8), region (29), aria-allowed-role (1).

Priority

Priority 5: fix before sharing the page publicly.

Why it matters

axe checks the actual browser-rendered page, so these issues can affect people using keyboards, screen readers, or other assistive technology.

How to fix it

Fix the top axe rule IDs first, especially critical and serious violations around names, roles, labels, headings, contrast, landmarks, and keyboard-accessible controls.

fail

high

Security

Priority 5

Add common public security headers

-13 rule pts

What failed

Several basic browser protection headers were not visible.

Evidence

Detected 2 of 5 common public security headers. Present: x-content-type-options, referrer-policy. Missing: strict-transport-security, content-security-policy, x-frame-options.

Priority

Priority 5: fix before sharing the page publicly.

Why it matters

These headers reduce avoidable browser-side risk and show a baseline of care before launch.

How to fix it

Configure headers such as Strict-Transport-Security, Content-Security-Policy, X-Content-Type-Options, X-Frame-Options, and Referrer-Policy.

fail

high

SEO / AEO

Priority 2

Remove noindex signals

-9 rule pts

What failed

The page appears to tell crawlers not to index it.

Evidence

A noindex directive was detected.

Priority

Priority 2: fix before sharing the page publicly.

Why it matters

A noindex directive can prevent the launch page from appearing in search results.

How to fix it

Remove noindex from meta robots or X-Robots-Tag headers once the page is ready to be public.

fail

high

Accessibility

Priority 11

Add meaningful image alt text

-14 rule pts

What failed

One or more images are missing alt text.

Evidence

Detected 2 image(s) missing alt text out of 23.

Priority

Priority 11: fix during launch polish.

Why it matters

People using screen readers may miss product context, trust signals, or calls to action.

How to fix it

Add concise alt text for informative images and use empty alt text only for decorative images.

fail

high

SEO / AEO

Priority 12

Add basic structured data

-10 rule pts

What failed

No JSON-LD schema was detected on the page.

Evidence

Detected 0 JSON-LD schema block(s).

Priority

Priority 12: fix during launch polish.

Why it matters

Structured data gives search and answer engines explicit facts about your product.

How to fix it

Add JSON-LD for SoftwareApplication, Product, Organization, or WebSite using only accurate public facts.

Unknown and not detected states

FreeScan.app keeps partial public data explicit. It marks unverifiable signals as unknown or not detected instead of inventing evidence.

0 unknown

Safe public scans cannot see private cookies, authenticated content, browser-rendered state, or reliable contrast values unless they are present in static public markup.

This scan did not produce unknown checks. If a future page has partial public data, the report will show those checks here instead of guessing.

Score aggregation details

Category scores come from earned rule points divided by available rule points. Failed checks are ordered by severity and score lost.

79/100

9 pass, 2 fail, 0 unknown

SEO / AEO

Severity mix: 0 critical, 6 high, 3 medium, 2 low.

high

Schema presence

-10 rule pts

Detected 0 JSON-LD schema block(s).

high

Indexability signals

-9 rule pts

A noindex directive was detected.

83/100

5 pass, 1 fail, 0 unknown

Security

Severity mix: 2 critical, 3 high, 0 medium, 0 low.

high

Common security headers

-13 rule pts

Detected 2 of 5 common public security headers. Present: x-content-type-options, referrer-policy. Missing: strict-transport-security, content-security-policy, x-frame-options.

57/100

5 pass, 3 fail, 0 unknown

Accessibility

Severity mix: 0 critical, 3 high, 5 medium, 0 low.

high

Rendered axe accessibility violations

-18 rule pts

axe found 3 violation rule(s), including 1 serious or critical rule(s). Top rules: color-contrast (8), region (29), aria-allowed-role (1).

high

Image alt text

-14 rule pts

Detected 2 image(s) missing alt text out of 23.

medium

Basic contrast

-8 rule pts

28 of 100 rendered text color sample(s) missed WCAG contrast targets. Worst rendered ratio: 1.1.

74/100

8 pass, 3 fail, 0 unknown

Design

Severity mix: 0 critical, 3 high, 6 medium, 2 low.

medium

Text density

-10 rule pts

Detected about 8038 visible word(s).

medium

Trust signals

-10 rule pts

Detected 0 trust-signal keyword occurrence(s).

medium

Rendered layout ergonomics

-9 rule pts

Horizontal overflow: 0px. Small tap targets: 27.

Full check list

Failed, unknown, and passed checks are all shown so the report is transparent even when public data is partial.

Showing failed checks.

Failed checks

These checks need attention.

fail

high

SEO / AEO

Schema presence

0/10

Detected 0 JSON-LD schema block(s).

Failed: earned 0 of 10 points.

Priority: Priority 12: fix during launch polish.

Why it matters: Structured data gives search and answer engines explicit facts about your product.

Fix: Add JSON-LD for SoftwareApplication, Product, Organization, or WebSite using only accurate public facts.

fail

high

SEO / AEO

Indexability signals

0/9

A noindex directive was detected.

Failed: earned 0 of 9 points.

Priority: Priority 2: fix before sharing the page publicly.

Why it matters: A noindex directive can prevent the launch page from appearing in search results.

Fix: Remove noindex from meta robots or X-Robots-Tag headers once the page is ready to be public.

fail

high

Security

Common security headers

5/18

Detected 2 of 5 common public security headers. Present: x-content-type-options, referrer-policy. Missing: strict-transport-security, content-security-policy, x-frame-options.

Failed: earned 5 of 18 points from partial coverage.

Priority: Priority 5: fix before sharing the page publicly.

Why it matters: These headers reduce avoidable browser-side risk and show a baseline of care before launch.

Fix: Configure headers such as Strict-Transport-Security, Content-Security-Policy, X-Content-Type-Options, X-Frame-Options, and Referrer-Policy.

fail

high

Accessibility

Image alt text

0/14

Detected 2 image(s) missing alt text out of 23.

Failed: earned 0 of 14 points.

Priority: Priority 11: fix during launch polish.

Why it matters: People using screen readers may miss product context, trust signals, or calls to action.

Fix: Add concise alt text for informative images and use empty alt text only for decorative images.

fail

medium

Accessibility

Basic contrast

0/8

28 of 100 rendered text color sample(s) missed WCAG contrast targets. Worst rendered ratio: 1.1.

Failed: earned 0 of 8 points.

Priority: Priority 20: lower-risk cleanup after urgent launch blockers.

Why it matters: Low contrast makes a launch page feel less polished and can exclude users with low vision.

Fix: Review key text, buttons, and links against a 4.5:1 contrast target for normal text.

fail

high

Accessibility

Rendered axe accessibility violations

0/18

axe found 3 violation rule(s), including 1 serious or critical rule(s). Top rules: color-contrast (8), region (29), aria-allowed-role (1).

Failed: earned 0 of 18 points.

Priority: Priority 5: fix before sharing the page publicly.

Why it matters: axe checks the actual browser-rendered page, so these issues can affect people using keyboards, screen readers, or other assistive technology.

Fix: Fix the top axe rule IDs first, especially critical and serious violations around names, roles, labels, headings, contrast, landmarks, and keyboard-accessible controls.

fail

medium

Design

Text density

0/10

Detected about 8038 visible word(s).

Failed: earned 0 of 10 points.

Priority: Priority 21: lower-risk cleanup after urgent launch blockers.

Why it matters: Too little copy can leave visitors confused; too much copy can bury the value proposition.

Fix: Add concise sections for value, proof, how it works, and next steps, then remove repetitive copy.

fail

medium

Design

Trust signals

0/10

Detected 0 trust-signal keyword occurrence(s).

Failed: earned 0 of 10 points.

Priority: Priority 16: lower-risk cleanup after urgent launch blockers.

Why it matters: Trust signals reduce hesitation when strangers see the product for the first time.

Fix: Add honest proof such as customer quotes, usage stats, founder credibility, security notes, or relevant logos.

fail

medium

Design

Rendered layout ergonomics

0/9

Horizontal overflow: 0px. Small tap targets: 27.

Failed: earned 0 of 9 points.

Priority: Priority 13: fix during launch polish.

Why it matters: Horizontal overflow and tiny tap targets make the page feel broken on real devices, especially for mobile visitors.

Fix: Remove elements wider than the viewport, add responsive constraints, and make important links, buttons, inputs, and controls at least 40px tall and wide where possible.

Safe fetch metadata

Public headers and redirects captured during intake. Response bodies, cookies, and credentials are not stored.

Security and accessibility checks are basic automated public checks. They are not a complete security audit, penetration test, privacy review, or WCAG certification.

Landing page

Step 1HTTP 2003 captured header(s)

Checked: https://studenten.campusmap24.de

Next/final: https://studenten.campusmap24.de

Content type: text/html; charset=utf-8

Landing page

Step 2HTTP 2003 captured header(s)

Checked: https://studenten.campusmap24.de

Next/final: https://studenten.campusmap24.de

Content type: text/html; charset=utf-8

Content hash: 01103c22a3bba27b1637c0f53511fb2cd2b81b26477efa74d8136bfd0d7411ed

robots.txt

Step 3HTTP 2003 captured header(s)

Checked: https://studenten.campusmap24.de/robots.txt

Next/final: https://studenten.campusmap24.de/robots.txt

Content type: text/plain; charset=utf-8

Content hash: 7942ce27675a47404ae772156b8542efef910b8786ef4b746052598840cff37d

sitemap.xml

Step 4HTTP 2003 captured header(s)

Checked: https://studenten.campusmap24.de/sitemap.xml

Next/final: https://studenten.campusmap24.de/sitemap.xml

Content type: text/html; charset=utf-8

Content hash: a2d042bf8bd1713d74ab804ebd699ac069f7708f0978c62c0449edd5020f2773

llms.txt

Step 5HTTP 2003 captured header(s)

Checked: https://studenten.campusmap24.de/llms.txt

Next/final: https://studenten.campusmap24.de/llms.txt

Content type: text/html; charset=utf-8

Content hash: a2d042bf8bd1713d74ab804ebd699ac069f7708f0978c62c0449edd5020f2773

Security probe

Step 6HTTP 4033 captured header(s)

Checked: https://studenten.campusmap24.de/.env

Next/final: https://studenten.campusmap24.de/.env

Content type: text/html; charset=UTF-8

Fetch result: HTTP 403 returned for security_probe.

Security probe

Step 7HTTP 4033 captured header(s)

Checked: https://studenten.campusmap24.de/.git/config

Next/final: https://studenten.campusmap24.de/.git/config

Content type: text/html; charset=UTF-8

Fetch result: HTTP 403 returned for security_probe.

Security probe

Step 8HTTP 4033 captured header(s)

Checked: https://studenten.campusmap24.de/wp-config.php

Next/final: https://studenten.campusmap24.de/wp-config.php

Content type: text/html; charset=UTF-8

Fetch result: HTTP 403 returned for security_probe.

Security probe

Step 9HTTP 4033 captured header(s)

Checked: https://studenten.campusmap24.de/backup.zip

Next/final: https://studenten.campusmap24.de/backup.zip

Content type: text/html; charset=UTF-8

Fetch result: HTTP 403 returned for security_probe.

Captured public headers

content-type

text/html; charset=utf-8

referrer-policy

strict-origin-when-cross-origin

x-content-type-options

nosniff

Public report link

Markdown export

Share the website audit report

Copy a public report link or a Markdown version with scores, fixes, opportunities, insights, and a normal link back to the scanned site.

Share preview

studenten.campusmap24.de website audit report

Close to ready: 73/100 overall, with prioritized fixes for SEO, security, accessibility, and design.

Public report link

Markdown report

# studenten.campusmap24.de Website Scan

Scanned URL: [https://studenten.campusmap24.de](https://studenten.campusmap24.de)
Report URL: /scan/studenten-campusmap24-de-73-launch-readiness-report-3f795fee
Created: 2026-06-30T07:15:15.780Z

## Score Summary

- Overall: 73/100
- SEO / AEO: 79/100
- Security: 83/100
- Accessibility: 57/100
- Design: 74/100

## Launch Readiness

Close to ready (Needs polish).

Passed: 27. Failed: 9. Unknown: 0.
Strongest area: Security. Weakest area: Accessibility.

## Prioritized Fixes

### 1. Fix rendered axe accessibility violations

- Category: Accessibility
- Status: fail
- Severity: high
- Rule points lost: 18
- Evidence: axe found 3 violation rule(s), including 1 serious or critical rule(s). Top rules: color-contrast (8), region (29), aria-allowed-role (1).
- Why it matters: axe checks the actual browser-rendered page, so these issues can affect people using keyboards, screen readers, or other assistive technology.
- Fix: Fix the top axe rule IDs first, especially critical and serious violations around names, roles, labels, headings, contrast, landmarks, and keyboard-accessible controls.

### 2. Add common public security headers

- Category: Security
- Status: fail
- Severity: high
- Rule points lost: 13
- Evidence: Detected 2 of 5 common public security headers. Present: x-content-type-options, referrer-policy. Missing: strict-transport-security, content-security-policy, x-frame-options.
- Why it matters: These headers reduce avoidable browser-side risk and show a baseline of care before launch.
- Fix: Configure headers such as Strict-Transport-Security, Content-Security-Policy, X-Content-Type-Options, X-Frame-Options, and Referrer-Policy.

### 3. Remove noindex signals

- Category: SEO / AEO
- Status: fail
- Severity: high
- Rule points lost: 9
- Evidence: A noindex directive was detected.
- Why it matters: A noindex directive can prevent the launch page from appearing in search results.
- Fix: Remove noindex from meta robots or X-Robots-Tag headers once the page is ready to be public.

### 4. Add meaningful image alt text

- Category: Accessibility
- Status: fail
- Severity: high
- Rule points lost: 14
- Evidence: Detected 2 image(s) missing alt text out of 23.
- Why it matters: People using screen readers may miss product context, trust signals, or calls to action.
- Fix: Add concise alt text for informative images and use empty alt text only for decorative images.

### 5. Add basic structured data

- Category: SEO / AEO
- Status: fail
- Severity: high
- Rule points lost: 10
- Evidence: Detected 0 JSON-LD schema block(s).
- Why it matters: Structured data gives search and answer engines explicit facts about your product.
- Fix: Add JSON-LD for SoftwareApplication, Product, Organization, or WebSite using only accurate public facts.

## Opportunities

### Add answer-ready sections for common buyer questions

- Impact: high
- Category: SEO / AEO
- Evidence: Pricing signals: 0. Use-case signals: 0. Integration/API signals: 1.
- Why it matters: Answer engines and search visitors need concise textual answers to summarize who the product is for, how it works, what it costs, and what it connects with.
- Next step: Add short, crawlable sections for pricing or plans, ideal users, use cases, integrations, security, and how the product differs from alternatives.

### Expose important supporting pages in navigation or footer

- Impact: medium
- Category: SEO / AEO
- Evidence: No pricing, docs, contact, security, privacy, terms, or about links were detected in public internal links.
- Why it matters: Internal links help visitors, crawlers, and AI answer systems discover supporting facts instead of relying on one landing page.
- Next step: Link to the most useful public pages, especially pricing, docs, contact, security, privacy, terms, and about pages where applicable.

### Make trust and proof easier to detect

- Impact: medium
- Category: Design
- Evidence: Detected 0 trust-signal keyword occurrence(s).
- Why it matters: Visitors who arrive cold from search, social, or AI citations need proof before they submit a form, start a trial, or buy.
- Next step: Add honest proof such as customer quotes, recognizable logos, security notes, usage stats, reviews, case studies, or founder credibility.

### Tighten the live color system

- Impact: high
- Category: Accessibility
- Evidence: 28 of 100 rendered contrast sample(s) missed target. Worst ratio: 1.1.
- Why it matters: Computed contrast catches the actual colors visitors see after CSS, themes, and overlays are applied.
- Next step: Audit foreground/background token pairs for body text, muted text, links, buttons, inputs, and badges, then raise weak pairs to WCAG AA contrast targets.

### Polish rendered responsive ergonomics

- Impact: medium
- Category: Design
- Evidence: Horizontal overflow: 0px. Small tap targets: 27.
- Why it matters: Overflow and tiny controls are easy for static scans to miss but obvious to real users, especially on mobile and tablet layouts.
- Next step: Constrain wide elements, avoid fixed-width content that exceeds the viewport, and increase touch target sizes for interactive controls.

### Measure search performance with first-party data

- Impact: medium
- Category: SEO / AEO
- Evidence: robots.txt and sitemap.xml were reachable, so the site has the basics needed for Search Console verification and monitoring.
- Why it matters: A scan can identify technical readiness, but Search Console and analytics reveal impressions, queries, clicks, pages, and conversions over time.
- Next step: Verify the domain in Search Console, submit the sitemap, and pair query/page data with analytics events for signups, demo requests, and purchases.

## Insights

### Crawlability needs review

- Category: SEO / AEO
- Evidence: HTTP 200. robots.txt: HTTP 200. sitemap.xml: HTTP 200. noindex check: failed.
- Interpretation: One or more crawl/index signals could prevent the page from being reliably discovered or shown.
- Recommended use: Use this as the first launch gate before deeper content, ranking, or AI visibility work.

### AEO depends on normal SEO plus answerable text

- Category: SEO / AEO
- Evidence: Visible words: 8038. H1 count: 1. Audience signals: 0. CTA labels: none detected.
- Interpretation: Google AI features currently rely on standard Search eligibility; the extra advantage comes from content that is easy to quote, summarize, and verify.
- Recommended use: Prioritize clear text answers, crawlable support pages, accurate schema, and visible proof over speculative AI-only markup.

### Detected entity signals

- Category: SEO / AEO
- Evidence: Title: PKV Studenten · Private Krankenversicherung für Studenten. H1: Spare bis zu   150 € pro Monat            function c(e){const t=Math.max(4,Math.min(12,e*.03)),n=t,o=e-t,i=e/2;return`M ${n.toFixed(1)} 13 Q ${i.toFixed(1)} 4.5 ${o.toFixed(1)} 12.5`}function r(e){const t=e.querySelector(".pen-underline-svg"),n=e.querySelector(".pen-underline-stroke");if(!t||!n)return;const o=Math.round(e.getBoundingClientRect().width);o {for(const n of t)r(n.target)});s.forEach(t=>e.observe(t))}else{const e=()=>s.forEach(r);e(),document.fonts?.ready&&document.fonts.ready.then(e),window.addEventListener("resize",e)}   mit einer privaten Krankenversicherung. Schema types: none.
- Interpretation: The stronger and more consistent these entity signals are, the easier it is for search and answer systems to identify the brand, product category, and page purpose.
- Recommended use: Keep the title, H1, meta description, Open Graph, schema, footer, and about/pricing/docs pages aligned around the same product facts.

### No structured data detected

- Category: SEO / AEO
- Evidence: JSON-LD blocks: 0. Types: none. Parse errors: 0.
- Interpretation: Missing or invalid structured data makes the page rely more heavily on inferred meaning from text and layout.
- Recommended use: Validate JSON-LD and use only accurate facts that are visible or clearly supported on the public page.

### Weakest score area

- Category: Accessibility
- Evidence: SEO / AEO: 79/100. Security: 83/100. Accessibility: 57/100. Design: 74/100
- Interpretation: The weakest area is Accessibility, so improvements there should have the most visible effect on readiness.
- Recommended use: Use the score mix to choose the next workstream instead of treating every issue as equally urgent.

### LLM-readable file found

- Category: SEO / AEO
- Evidence: https://studenten.campusmap24.de/llms.txt returned HTTP 200.
- Interpretation: llms.txt can be a useful optional summary for agents, but it should not be treated as a guaranteed AI search ranking factor.
- Recommended use: Invest first in crawlability, helpful visible content, internal links, and accurate schema; add llms.txt as a tidy supplement.

### Rendered page experience snapshot

- Category: Design
- Evidence: Rendered text samples: 100. Contrast failures: 28. Console errors: 0. Horizontal overflow: 0px.
- Interpretation: The scan inspected the browser-rendered page, so contrast, runtime, layout, and timing signals are more representative than static markup alone.
- Recommended use: Use rendered checks to prioritize issues that visitors actually experience after JavaScript and CSS load.

### Rendered speed snapshot

- Category: Design
- Evidence: DOMContentLoaded: 1172ms. Load complete: 0ms. First contentful paint: 852ms. Resources: 25. Scripts: 12. Images: 2. Third-party origins: 7. Transfer: not available.
- Interpretation: These are lightweight browser timings from one rendered scan, so they are useful directional signals rather than real-user performance proof.
- Recommended use: Use slow timings, high script counts, heavy transfer size, and many third-party origins to choose focused speed work, then verify important changes with analytics or field data when available.

### Rendered axe accessibility snapshot

- Category: Accessibility
- Evidence: axe violations: 3. Critical: 0. Serious: 1. Top rules: color-contrast, region, aria-allowed-role.
- Interpretation: axe-core catches common accessibility failures in the actual rendered DOM, but it is still automated coverage and not a full manual accessibility audit.
- Recommended use: Treat critical and serious axe failures as high-priority fixes, then manually review keyboard flow, focus states, screen reader meaning, and interaction states.

## Scope

FreeScan.app performs safe public checks only. It is not a penetration test, full SEO engagement, full accessibility audit, WCAG certification, backlink audit, rank tracker, or analytics platform.

Public reports expose the scanned public URL, safe scores, sanitized public evidence, and fix guidance. They do not include credentials, cookies, hidden form values, or sensitive response bodies.

Rescan same URL

Rerun the full deterministic scanner for studenten.campusmap24.de without re-entering the URL. The previous report stays saved so the next result can be compared against it.

FreeScan.app Start free audit

New scan Visit scanned site

Public status

completed

HTTP 200

0 redirects

36 checks

Website audit scorecard for studenten.campusmap24.de

The scanner fetched the public page, extracted deterministic facts, and stored scored results across SEO / AEO, security, accessibility, and design.

Submitted

Studenten.campusmap24.de

Final URL

https://studenten.campusmap24.de

Created

Jun 30, 2026, 7:15 AM

Safe fetch

227 ms

Four-score result

Close to ready (Needs polish): 27 passed, 9 failed, and 0 unknown. Strongest area: Security. Weakest area: Accessibility.

Overall

out of 100

SEO / AEO

out of 100

73/92 rule points

Security

out of 100

63/76 rule points

Accessibility

out of 100

54/94 rule points

Design

out of 100

81/110 rule points

Why this scored this way

Scores are deterministic: each category earns rule points for verified public signals and loses points for failed checks. Unknown checks are shown separately instead of guessed.

Category point breakdown

SEO / AEO73/92

Security63/76

Accessibility54/94

Design81/110

Biggest score-losing checks

high

Accessibility

Rendered axe accessibility violations

axe found 3 violation rule(s), including 1 serious or critical rule(s). Top rules: color-contrast (8), region (29), aria-allowed-role (1).

high

Accessibility

Image alt text

Detected 2 image(s) missing alt text out of 23.

high

Security

Common security headers

Detected 2 of 5 common public security headers. Present: x-content-type-options, referrer-policy. Missing: strict-transport-security, content-security-policy, x-frame-options.

high

SEO / AEO

Schema presence

Detected 0 JSON-LD schema block(s).

Recommendations

Score-losing issues ordered by remediation priority, severity, and score impact.

5 fixes

6 opportunities

9 insights

fail

high

Accessibility

Priority 5

Fix rendered axe accessibility violations

-18 rule pts

What failed

The rendered page has accessibility rule violations detected by axe-core.

Evidence

axe found 3 violation rule(s), including 1 serious or critical rule(s). Top rules: color-contrast (8), region (29), aria-allowed-role (1).

Priority

Priority 5: fix before sharing the page publicly.

Why it matters

axe checks the actual browser-rendered page, so these issues can affect people using keyboards, screen readers, or other assistive technology.

How to fix it

Fix the top axe rule IDs first, especially critical and serious violations around names, roles, labels, headings, contrast, landmarks, and keyboard-accessible controls.

fail

high

Security

Priority 5

Add common public security headers

-13 rule pts

What failed

Several basic browser protection headers were not visible.

Evidence

Detected 2 of 5 common public security headers. Present: x-content-type-options, referrer-policy. Missing: strict-transport-security, content-security-policy, x-frame-options.

Priority

Priority 5: fix before sharing the page publicly.

Why it matters

These headers reduce avoidable browser-side risk and show a baseline of care before launch.

How to fix it

Configure headers such as Strict-Transport-Security, Content-Security-Policy, X-Content-Type-Options, X-Frame-Options, and Referrer-Policy.

fail

high

SEO / AEO

Priority 2

Remove noindex signals

-9 rule pts

What failed

The page appears to tell crawlers not to index it.

Evidence

A noindex directive was detected.

Priority

Priority 2: fix before sharing the page publicly.

Why it matters

A noindex directive can prevent the launch page from appearing in search results.

How to fix it

Remove noindex from meta robots or X-Robots-Tag headers once the page is ready to be public.

fail

high

Accessibility

Priority 11

Add meaningful image alt text

-14 rule pts

What failed

One or more images are missing alt text.

Evidence

Detected 2 image(s) missing alt text out of 23.

Priority

Priority 11: fix during launch polish.

Why it matters

People using screen readers may miss product context, trust signals, or calls to action.

How to fix it

Add concise alt text for informative images and use empty alt text only for decorative images.

fail

high

SEO / AEO

Priority 12

Add basic structured data

-10 rule pts

What failed

No JSON-LD schema was detected on the page.

Evidence

Detected 0 JSON-LD schema block(s).

Priority

Priority 12: fix during launch polish.

Why it matters

Structured data gives search and answer engines explicit facts about your product.

How to fix it

Add JSON-LD for SoftwareApplication, Product, Organization, or WebSite using only accurate public facts.

Unknown and not detected states

FreeScan.app keeps partial public data explicit. It marks unverifiable signals as unknown or not detected instead of inventing evidence.

0 unknown

Safe public scans cannot see private cookies, authenticated content, browser-rendered state, or reliable contrast values unless they are present in static public markup.

This scan did not produce unknown checks. If a future page has partial public data, the report will show those checks here instead of guessing.

Score aggregation details

Category scores come from earned rule points divided by available rule points. Failed checks are ordered by severity and score lost.

79/100

9 pass, 2 fail, 0 unknown

SEO / AEO

Severity mix: 0 critical, 6 high, 3 medium, 2 low.

high

Schema presence

-10 rule pts

Detected 0 JSON-LD schema block(s).

high

Indexability signals

-9 rule pts

A noindex directive was detected.

83/100

5 pass, 1 fail, 0 unknown

Security

Severity mix: 2 critical, 3 high, 0 medium, 0 low.

high

Common security headers

-13 rule pts

Detected 2 of 5 common public security headers. Present: x-content-type-options, referrer-policy. Missing: strict-transport-security, content-security-policy, x-frame-options.

57/100

5 pass, 3 fail, 0 unknown

Accessibility

Severity mix: 0 critical, 3 high, 5 medium, 0 low.

high

Rendered axe accessibility violations

-18 rule pts

axe found 3 violation rule(s), including 1 serious or critical rule(s). Top rules: color-contrast (8), region (29), aria-allowed-role (1).

high

Image alt text

-14 rule pts

Detected 2 image(s) missing alt text out of 23.

medium

Basic contrast

-8 rule pts

28 of 100 rendered text color sample(s) missed WCAG contrast targets. Worst rendered ratio: 1.1.

74/100

8 pass, 3 fail, 0 unknown

Design

Severity mix: 0 critical, 3 high, 6 medium, 2 low.

medium

Text density

-10 rule pts

Detected about 8038 visible word(s).

medium

Trust signals

-10 rule pts

Detected 0 trust-signal keyword occurrence(s).

medium

Rendered layout ergonomics

-9 rule pts

Horizontal overflow: 0px. Small tap targets: 27.

Full check list

Failed, unknown, and passed checks are all shown so the report is transparent even when public data is partial.

Showing failed checks.

Failed checks

These checks need attention.

fail

high

SEO / AEO

Schema presence

0/10

Detected 0 JSON-LD schema block(s).

Failed: earned 0 of 10 points.

Priority: Priority 12: fix during launch polish.

Why it matters: Structured data gives search and answer engines explicit facts about your product.

Fix: Add JSON-LD for SoftwareApplication, Product, Organization, or WebSite using only accurate public facts.

fail

high

SEO / AEO

Indexability signals

0/9

A noindex directive was detected.

Failed: earned 0 of 9 points.

Priority: Priority 2: fix before sharing the page publicly.

Why it matters: A noindex directive can prevent the launch page from appearing in search results.

Fix: Remove noindex from meta robots or X-Robots-Tag headers once the page is ready to be public.

fail

high

Security

Common security headers

5/18

Detected 2 of 5 common public security headers. Present: x-content-type-options, referrer-policy. Missing: strict-transport-security, content-security-policy, x-frame-options.

Failed: earned 5 of 18 points from partial coverage.

Priority: Priority 5: fix before sharing the page publicly.

Why it matters: These headers reduce avoidable browser-side risk and show a baseline of care before launch.

Fix: Configure headers such as Strict-Transport-Security, Content-Security-Policy, X-Content-Type-Options, X-Frame-Options, and Referrer-Policy.

fail

high

Accessibility

Image alt text

0/14

Detected 2 image(s) missing alt text out of 23.

Failed: earned 0 of 14 points.

Priority: Priority 11: fix during launch polish.

Why it matters: People using screen readers may miss product context, trust signals, or calls to action.

Fix: Add concise alt text for informative images and use empty alt text only for decorative images.

fail

medium

Accessibility

Basic contrast

0/8

28 of 100 rendered text color sample(s) missed WCAG contrast targets. Worst rendered ratio: 1.1.

Failed: earned 0 of 8 points.

Priority: Priority 20: lower-risk cleanup after urgent launch blockers.

Why it matters: Low contrast makes a launch page feel less polished and can exclude users with low vision.

Fix: Review key text, buttons, and links against a 4.5:1 contrast target for normal text.

fail

high

Accessibility

Rendered axe accessibility violations

0/18

axe found 3 violation rule(s), including 1 serious or critical rule(s). Top rules: color-contrast (8), region (29), aria-allowed-role (1).

Failed: earned 0 of 18 points.

Priority: Priority 5: fix before sharing the page publicly.

Why it matters: axe checks the actual browser-rendered page, so these issues can affect people using keyboards, screen readers, or other assistive technology.

Fix: Fix the top axe rule IDs first, especially critical and serious violations around names, roles, labels, headings, contrast, landmarks, and keyboard-accessible controls.

fail

medium

Design

Text density

0/10

Detected about 8038 visible word(s).

Failed: earned 0 of 10 points.

Priority: Priority 21: lower-risk cleanup after urgent launch blockers.

Why it matters: Too little copy can leave visitors confused; too much copy can bury the value proposition.

Fix: Add concise sections for value, proof, how it works, and next steps, then remove repetitive copy.

fail

medium

Design

Trust signals

0/10

Detected 0 trust-signal keyword occurrence(s).

Failed: earned 0 of 10 points.

Priority: Priority 16: lower-risk cleanup after urgent launch blockers.

Why it matters: Trust signals reduce hesitation when strangers see the product for the first time.

Fix: Add honest proof such as customer quotes, usage stats, founder credibility, security notes, or relevant logos.

fail

medium

Design

Rendered layout ergonomics

0/9

Horizontal overflow: 0px. Small tap targets: 27.

Failed: earned 0 of 9 points.

Priority: Priority 13: fix during launch polish.

Why it matters: Horizontal overflow and tiny tap targets make the page feel broken on real devices, especially for mobile visitors.

Fix: Remove elements wider than the viewport, add responsive constraints, and make important links, buttons, inputs, and controls at least 40px tall and wide where possible.

Safe fetch metadata

Public headers and redirects captured during intake. Response bodies, cookies, and credentials are not stored.

Security and accessibility checks are basic automated public checks. They are not a complete security audit, penetration test, privacy review, or WCAG certification.

Landing page

Step 1HTTP 2003 captured header(s)

Checked: https://studenten.campusmap24.de

Next/final: https://studenten.campusmap24.de

Content type: text/html; charset=utf-8

Landing page

Step 2HTTP 2003 captured header(s)

Checked: https://studenten.campusmap24.de

Next/final: https://studenten.campusmap24.de

Content type: text/html; charset=utf-8

Content hash: 01103c22a3bba27b1637c0f53511fb2cd2b81b26477efa74d8136bfd0d7411ed

robots.txt

Step 3HTTP 2003 captured header(s)

Checked: https://studenten.campusmap24.de/robots.txt

Next/final: https://studenten.campusmap24.de/robots.txt

Content type: text/plain; charset=utf-8

Content hash: 7942ce27675a47404ae772156b8542efef910b8786ef4b746052598840cff37d

sitemap.xml

Step 4HTTP 2003 captured header(s)

Checked: https://studenten.campusmap24.de/sitemap.xml

Next/final: https://studenten.campusmap24.de/sitemap.xml

Content type: text/html; charset=utf-8

Content hash: a2d042bf8bd1713d74ab804ebd699ac069f7708f0978c62c0449edd5020f2773

llms.txt

Step 5HTTP 2003 captured header(s)

Checked: https://studenten.campusmap24.de/llms.txt

Next/final: https://studenten.campusmap24.de/llms.txt

Content type: text/html; charset=utf-8

Content hash: a2d042bf8bd1713d74ab804ebd699ac069f7708f0978c62c0449edd5020f2773

Security probe

Step 6HTTP 4033 captured header(s)

Checked: https://studenten.campusmap24.de/.env

Next/final: https://studenten.campusmap24.de/.env

Content type: text/html; charset=UTF-8

Fetch result: HTTP 403 returned for security_probe.

Security probe

Step 7HTTP 4033 captured header(s)

Checked: https://studenten.campusmap24.de/.git/config

Next/final: https://studenten.campusmap24.de/.git/config

Content type: text/html; charset=UTF-8

Fetch result: HTTP 403 returned for security_probe.

Security probe

Step 8HTTP 4033 captured header(s)

Checked: https://studenten.campusmap24.de/wp-config.php

Next/final: https://studenten.campusmap24.de/wp-config.php

Content type: text/html; charset=UTF-8

Fetch result: HTTP 403 returned for security_probe.

Security probe

Step 9HTTP 4033 captured header(s)

Checked: https://studenten.campusmap24.de/backup.zip

Next/final: https://studenten.campusmap24.de/backup.zip

Content type: text/html; charset=UTF-8

Fetch result: HTTP 403 returned for security_probe.

Captured public headers

content-type

text/html; charset=utf-8

referrer-policy

strict-origin-when-cross-origin

x-content-type-options

nosniff

Public report link

Markdown export

Share the website audit report

Copy a public report link or a Markdown version with scores, fixes, opportunities, insights, and a normal link back to the scanned site.

Share preview

studenten.campusmap24.de website audit report

Close to ready: 73/100 overall, with prioritized fixes for SEO, security, accessibility, and design.

Public report link

Markdown report

# studenten.campusmap24.de Website Scan

Scanned URL: [https://studenten.campusmap24.de](https://studenten.campusmap24.de)
Report URL: /scan/studenten-campusmap24-de-73-launch-readiness-report-3f795fee
Created: 2026-06-30T07:15:15.780Z

## Score Summary

- Overall: 73/100
- SEO / AEO: 79/100
- Security: 83/100
- Accessibility: 57/100
- Design: 74/100

## Launch Readiness

Close to ready (Needs polish).

Passed: 27. Failed: 9. Unknown: 0.
Strongest area: Security. Weakest area: Accessibility.

## Prioritized Fixes

### 1. Fix rendered axe accessibility violations

- Category: Accessibility
- Status: fail
- Severity: high
- Rule points lost: 18
- Evidence: axe found 3 violation rule(s), including 1 serious or critical rule(s). Top rules: color-contrast (8), region (29), aria-allowed-role (1).
- Why it matters: axe checks the actual browser-rendered page, so these issues can affect people using keyboards, screen readers, or other assistive technology.
- Fix: Fix the top axe rule IDs first, especially critical and serious violations around names, roles, labels, headings, contrast, landmarks, and keyboard-accessible controls.

### 2. Add common public security headers

- Category: Security
- Status: fail
- Severity: high
- Rule points lost: 13
- Evidence: Detected 2 of 5 common public security headers. Present: x-content-type-options, referrer-policy. Missing: strict-transport-security, content-security-policy, x-frame-options.
- Why it matters: These headers reduce avoidable browser-side risk and show a baseline of care before launch.
- Fix: Configure headers such as Strict-Transport-Security, Content-Security-Policy, X-Content-Type-Options, X-Frame-Options, and Referrer-Policy.

### 3. Remove noindex signals

- Category: SEO / AEO
- Status: fail
- Severity: high
- Rule points lost: 9
- Evidence: A noindex directive was detected.
- Why it matters: A noindex directive can prevent the launch page from appearing in search results.
- Fix: Remove noindex from meta robots or X-Robots-Tag headers once the page is ready to be public.

### 4. Add meaningful image alt text

- Category: Accessibility
- Status: fail
- Severity: high
- Rule points lost: 14
- Evidence: Detected 2 image(s) missing alt text out of 23.
- Why it matters: People using screen readers may miss product context, trust signals, or calls to action.
- Fix: Add concise alt text for informative images and use empty alt text only for decorative images.

### 5. Add basic structured data

- Category: SEO / AEO
- Status: fail
- Severity: high
- Rule points lost: 10
- Evidence: Detected 0 JSON-LD schema block(s).
- Why it matters: Structured data gives search and answer engines explicit facts about your product.
- Fix: Add JSON-LD for SoftwareApplication, Product, Organization, or WebSite using only accurate public facts.

## Opportunities

### Add answer-ready sections for common buyer questions

- Impact: high
- Category: SEO / AEO
- Evidence: Pricing signals: 0. Use-case signals: 0. Integration/API signals: 1.
- Why it matters: Answer engines and search visitors need concise textual answers to summarize who the product is for, how it works, what it costs, and what it connects with.
- Next step: Add short, crawlable sections for pricing or plans, ideal users, use cases, integrations, security, and how the product differs from alternatives.

### Expose important supporting pages in navigation or footer

- Impact: medium
- Category: SEO / AEO
- Evidence: No pricing, docs, contact, security, privacy, terms, or about links were detected in public internal links.
- Why it matters: Internal links help visitors, crawlers, and AI answer systems discover supporting facts instead of relying on one landing page.
- Next step: Link to the most useful public pages, especially pricing, docs, contact, security, privacy, terms, and about pages where applicable.

### Make trust and proof easier to detect

- Impact: medium
- Category: Design
- Evidence: Detected 0 trust-signal keyword occurrence(s).
- Why it matters: Visitors who arrive cold from search, social, or AI citations need proof before they submit a form, start a trial, or buy.
- Next step: Add honest proof such as customer quotes, recognizable logos, security notes, usage stats, reviews, case studies, or founder credibility.

### Tighten the live color system

- Impact: high
- Category: Accessibility
- Evidence: 28 of 100 rendered contrast sample(s) missed target. Worst ratio: 1.1.
- Why it matters: Computed contrast catches the actual colors visitors see after CSS, themes, and overlays are applied.
- Next step: Audit foreground/background token pairs for body text, muted text, links, buttons, inputs, and badges, then raise weak pairs to WCAG AA contrast targets.

### Polish rendered responsive ergonomics

- Impact: medium
- Category: Design
- Evidence: Horizontal overflow: 0px. Small tap targets: 27.
- Why it matters: Overflow and tiny controls are easy for static scans to miss but obvious to real users, especially on mobile and tablet layouts.
- Next step: Constrain wide elements, avoid fixed-width content that exceeds the viewport, and increase touch target sizes for interactive controls.

### Measure search performance with first-party data

- Impact: medium
- Category: SEO / AEO
- Evidence: robots.txt and sitemap.xml were reachable, so the site has the basics needed for Search Console verification and monitoring.
- Why it matters: A scan can identify technical readiness, but Search Console and analytics reveal impressions, queries, clicks, pages, and conversions over time.
- Next step: Verify the domain in Search Console, submit the sitemap, and pair query/page data with analytics events for signups, demo requests, and purchases.

## Insights

### Crawlability needs review

- Category: SEO / AEO
- Evidence: HTTP 200. robots.txt: HTTP 200. sitemap.xml: HTTP 200. noindex check: failed.
- Interpretation: One or more crawl/index signals could prevent the page from being reliably discovered or shown.
- Recommended use: Use this as the first launch gate before deeper content, ranking, or AI visibility work.

### AEO depends on normal SEO plus answerable text

- Category: SEO / AEO
- Evidence: Visible words: 8038. H1 count: 1. Audience signals: 0. CTA labels: none detected.
- Interpretation: Google AI features currently rely on standard Search eligibility; the extra advantage comes from content that is easy to quote, summarize, and verify.
- Recommended use: Prioritize clear text answers, crawlable support pages, accurate schema, and visible proof over speculative AI-only markup.

### Detected entity signals

- Category: SEO / AEO
- Evidence: Title: PKV Studenten · Private Krankenversicherung für Studenten. H1: Spare bis zu   150 € pro Monat            function c(e){const t=Math.max(4,Math.min(12,e*.03)),n=t,o=e-t,i=e/2;return`M ${n.toFixed(1)} 13 Q ${i.toFixed(1)} 4.5 ${o.toFixed(1)} 12.5`}function r(e){const t=e.querySelector(".pen-underline-svg"),n=e.querySelector(".pen-underline-stroke");if(!t||!n)return;const o=Math.round(e.getBoundingClientRect().width);o {for(const n of t)r(n.target)});s.forEach(t=>e.observe(t))}else{const e=()=>s.forEach(r);e(),document.fonts?.ready&&document.fonts.ready.then(e),window.addEventListener("resize",e)}   mit einer privaten Krankenversicherung. Schema types: none.
- Interpretation: The stronger and more consistent these entity signals are, the easier it is for search and answer systems to identify the brand, product category, and page purpose.
- Recommended use: Keep the title, H1, meta description, Open Graph, schema, footer, and about/pricing/docs pages aligned around the same product facts.

### No structured data detected

- Category: SEO / AEO
- Evidence: JSON-LD blocks: 0. Types: none. Parse errors: 0.
- Interpretation: Missing or invalid structured data makes the page rely more heavily on inferred meaning from text and layout.
- Recommended use: Validate JSON-LD and use only accurate facts that are visible or clearly supported on the public page.

### Weakest score area

- Category: Accessibility
- Evidence: SEO / AEO: 79/100. Security: 83/100. Accessibility: 57/100. Design: 74/100
- Interpretation: The weakest area is Accessibility, so improvements there should have the most visible effect on readiness.
- Recommended use: Use the score mix to choose the next workstream instead of treating every issue as equally urgent.

### LLM-readable file found

- Category: SEO / AEO
- Evidence: https://studenten.campusmap24.de/llms.txt returned HTTP 200.
- Interpretation: llms.txt can be a useful optional summary for agents, but it should not be treated as a guaranteed AI search ranking factor.
- Recommended use: Invest first in crawlability, helpful visible content, internal links, and accurate schema; add llms.txt as a tidy supplement.

### Rendered page experience snapshot

- Category: Design
- Evidence: Rendered text samples: 100. Contrast failures: 28. Console errors: 0. Horizontal overflow: 0px.
- Interpretation: The scan inspected the browser-rendered page, so contrast, runtime, layout, and timing signals are more representative than static markup alone.
- Recommended use: Use rendered checks to prioritize issues that visitors actually experience after JavaScript and CSS load.

### Rendered speed snapshot

- Category: Design
- Evidence: DOMContentLoaded: 1172ms. Load complete: 0ms. First contentful paint: 852ms. Resources: 25. Scripts: 12. Images: 2. Third-party origins: 7. Transfer: not available.
- Interpretation: These are lightweight browser timings from one rendered scan, so they are useful directional signals rather than real-user performance proof.
- Recommended use: Use slow timings, high script counts, heavy transfer size, and many third-party origins to choose focused speed work, then verify important changes with analytics or field data when available.

### Rendered axe accessibility snapshot

- Category: Accessibility
- Evidence: axe violations: 3. Critical: 0. Serious: 1. Top rules: color-contrast, region, aria-allowed-role.
- Interpretation: axe-core catches common accessibility failures in the actual rendered DOM, but it is still automated coverage and not a full manual accessibility audit.
- Recommended use: Treat critical and serious axe failures as high-priority fixes, then manually review keyboard flow, focus states, screen reader meaning, and interaction states.

## Scope

FreeScan.app performs safe public checks only. It is not a penetration test, full SEO engagement, full accessibility audit, WCAG certification, backlink audit, rank tracker, or analytics platform.

Public reports expose the scanned public URL, safe scores, sanitized public evidence, and fix guidance. They do not include credentials, cookies, hidden form values, or sensitive response bodies.

Rescan same URL

Rerun the full deterministic scanner for studenten.campusmap24.de without re-entering the URL. The previous report stays saved so the next result can be compared against it.