Mixed Content Fixer

Find HTTP resources loaded on your HTTPS page — then get the exact fix for your stack.

How to get your page source:
Open your site → right-click → View Page Source → Select All → Copy → Paste below
Find mixed content in browser DevTools:

1. Open your site in Chrome or Firefox
2. Press F12 to open DevTools
3. Go to the Console tab
4. Look for warnings like:
  Mixed Content: The page was loaded over HTTPS, but requested an insecure resource 'http://...'

5. Paste the full console output below:
✅ No mixed content found — all resources are loaded over HTTPS.

See also: How to fix mixed content

Finds HTTP resources loaded on your HTTPS page. Paste your page HTML source to scan for http:// scripts, stylesheets, images, and iframes that browsers will block. Generates upgrade-insecure-requests CSP and stack-specific Nginx, Cloudflare, Vercel, and WordPress fix blocks.

You might also need
🛡CSPFixer
Scan your live URL and generate a working CSP
🔒HeadersFixer
Scan all security headers and get the exact fix
📋Pre-Launch Checklist
20 HTTP checks before you ship
Done with this tool?
20 HTTP checks before you ship — security, CORS, cache, redirects, staging.
Pre-Launch Checklist →
📖 HttpFixer Blog — fix guides, explainers, and references →