biljettkiosken.se

.se crawl

First seen 2026-05-25 · Last seen 2026-05-31 · ok HTTP/1.1 200 1600 ms crawled 2026-05-29

GB · 178.62.2.6 · AS14061 DigitalOcean, LLC

Reputation 89/100 weak security headers dmarc monitor-only

Classifying

HTML metadata

Title: Biljettkiosken
Description: Varför krångla? Biljettkiosken är första biljettsystemet att erbjuda biljettköp med Swish

Technology

Server: Apache
jQuery: 1.8.1 known XSS (<3.5)
Stack: Java

Analytics

Google Tag Manager

Fonts

Google Fonts

Third-party hosts loaded (3)

fonts.googleapis.com×1
maxcdn.bootstrapcdn.com×1
www.googletagmanager.com×1

Contact

Email

Phone

DNS records live

NS

ns1.citypuls.se
ns2.citypuls.se

MX

10 mail.citypuls.se

Email authentication partial

SPF

v=spf1 a mx include:sendgrid.net include:_spf.google.com ip4:62.182.217.203 ip4:68.183.71.192 ~all

softfail (~all)

DMARC

v=DMARC1; p=none; rua=mailto:dmarc@citypuls.se

policy: none (monitoring only)

DKIM

s1: k=rsa; t=s; p=MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAyy/q9Zc8bPPOXVBqSYgoUMAakHKfU20DVfG5nlaCA7ZXxH2M4gUZ4vnqxQcUBxJt8Iez9nRZzaF0Ut1PCl…
s2: k=rsa; t=s; p=MIGfMA0GCSqGSIb3DQEBAQUAA4GNADCBiQKBgQDxjib6dH3mD3ij0DwkS6mo8TKHqXypWR9+l1FnFMPE0bBtP7rkPY/mIADjRWbsTFeu4LgUU7O5ZezNBx4B5d8zcY…

selectors probed

Certificate (current)

Sectigo Public Server Authentication CA DV R36

from 2025-09-09 to 2026-10-11

Expires in 132 days

Full certificate history on crt.sh ↗

HTTP security headers

Header hygiene 30/100 Checked live page: https://www.biljettkiosken.se/

findings

missing HSTS
missing Content Security Policy
missing frame protection
missing content type protection
missing Referrer Policy
missing Permissions Policy