indexo.dev

bademaxx.de

.de crawl

First seen 2026-04-28 · Last seen 2026-05-18 · ok HTTP/1.1 200 1675 ms crawled 2026-05-06

DE · 80.237.243.87 · AS61157 PlusServer GmbH

Reputation 75/100 wrong cert

sector sports type homepage

HTML metadata

Title
bademaxx - Das Sport- und Erlebnisbad in Speyer
Description
Hier finden Sie Informationen über das bademaxx Speyer. Besuchen Sie uns und nutzen Sie unser vielseitiges Angebot im Hallenbad, in der Sauna und im Freibad.
Language
de
Canonical
https://www.bademaxx.de

Open Graph

url
https://www.bademaxx.de
title
bademaxx - Das Sport- und Erlebnisbad in Speyer
site name
Bademaxx
description
Hier finden Sie Informationen über das bademaxx Speyer. Besuchen Sie uns und nutzen Sie unser vielseitiges Angebot im Hallenbad, in der Sauna und im Freibad.

Technology

Server
Apache
CMS
Gatsby

Third-party hosts loaded (4)

  • bademaxx-status.de×2
  • cdn.eye-able.com×2
  • fonts.stadtwerke-ssl.de×1
  • translate-cdn.eye-able.com×1

Social

Contact

Phone

Registration

Updated
2018-06-05
Name servers
  • docks18.rzone.de.
  • shades04.rzone.de.

DNS records live

NS
  • docks18.rzone.de
  • shades04.rzone.de
MX
  • 5 smtpin.rzone.de
TXT
  • 6wz0ls3j2c22cb9j6xb03bg10qgzq4rt
  • v=spf1 a mx include:secure-mailgate.com include:_spf.strato.com -all

Certificate (current) wrong cert

Sectigo Public Server Authentication CA DV R36
from 2026-03-12 to 2027-04-13
Expires in 328 days

Full certificate history on crt.sh ↗

HTTP security headers

Header hygiene 85/100 Checked live page: https://www.bademaxx.de/

present
  • strict-transport-security
  • content-security-policy
  • x-frame-options
  • x-content-type-options
  • referrer-policy
findings
  • CSP allows unsafe inline scripts/styles
  • CSP uses wildcard sources
  • missing Permissions Policy
Header values
referrer-policy
same-origin
x-frame-options
SAMEORIGIN
x-content-type-options
nosniff
content-security-policy
default-src 'none'; base-uri 'self'; form-action 'self'; font-src 'self' https://fonts.stadtwerke-ssl.de https://fonts.gstatic.com https://storage.googleapis.com; connect-src *; img-src 'self' https://www.gipsprojekt.de https://cdn.eye-able.com https://bademaxx-status.de https://maps.googleapis.com https://storage.googleapis.com https://maps.gstatic.com https://cs-assets.b-ite.com data:; script-src 'unsafe-inline' 'unsafe-eval' 'self' https://cdn.eye-able.com https://translate-cdn.eye-able.com https://connect.facebook.net https://storage.googleapis.com https://maps.google.com https://maps.googleapis.com https://static.b-ite.com https://cs-assets.b-ite.com; frame-src *; style-src 'self' 'unsafe-inline' https://cdn.eye-able.com https://fonts.stadtwerke-ssl.de https://storage.googleapis.com https://fonts.googleapis.com; media-src 'self'; manifest-src 'self'
strict-transport-security
max-age=31536000; includeSubDomains

Links to (7)

Linked from (1)