bonoparques.es

HTML metadata

Title: Bono Parques: Diversión Todo el Año en Parques Reunidos
Description: Los Bono Parques te permiten disfrutar de los mejores parques temáticos de forma ilimitada. Descubre los diferentes tipos de bonos y elige el mejor para ti.
Language: es
Canonical: https://www.bonoparques.es

Open Graph

url: https://www.bonoparques.es
title: Bono Parques: Diversión Todo el Año en Parques Reunidos
locale: es
site name: Bono Parques
description: Los Bono Parques te permiten disfrutar de los mejores parques temáticos de forma ilimitada. Descubre los diferentes tipos de bonos y elige el mejor para ti.

Technology

CMS: WordPress

Cookie consent

OneTrust

Third-party hosts loaded (3)

cdn.cookielaw.org×2
cdn.jsdelivr.net×2
www.google.com×1

Social

Contact

Email

dpo@grpr.com

Address

Madrid

DNS records live

NS

ns01.parquesreunidos.com
ns02.parquesreunidos.com
ns03.parquesreunidos.com

MX

10 mxa-0078a701.gslb.pphosted.com
10 mxb-0078a701.gslb.pphosted.com

TXT

mandrill_verify.qx_ALHzxVNOJE-GUcFvR2w
knowbe4-site-verification=2dbfaa24e4a8b8964e32ba22e7f179872d9f7234332172ec31a34db5ccc14d51

Verified for

Microsoft 365

Email authentication strong

SPF

v=spf1 mx ip4:194.30.92.146 ip4:217.172.65.104 ip4:194.140.132.172 ip4:195.55.102.181 ip4:195.76.213.51 ip4:89.140.47.174 ip4:195.140.184.0/22 ip4:91.192.40.0/22 ip4:194.140.132.162 ip4:213.206.105.71 ip4:194.140.143.80 ip4:178.79.170.45 ip4:176.58.111.134 ip4:185.2.4.75 ip4:172.104.149.195 ip4:139.162.166.78 ip4:178.79.183.23 ip4:194.140.170.115 ip4:212.81.179.146 include:relays.esferize.com include:customers.clickdimensions.com include:spf.protection.outlook.com include:_spf.salesforce.com include:spf.mandrillapp.com ~all

softfail (~all)

DMARC

v=DMARC1; p=quarantine; sp=quarantine; fo=1; adkim=r; aspf=r; pct=100; rua=mailto:dmarc_rua@emaildefense.proofpoint.com,mailto:dmarc@grpr.com; ruf=mailto:dmarc_ruf@emaildefense.proofpoint.com,mailto:dmarc@grpr.com;

policy: quarantine · sp=quarantine

DKIM

selector1: v=DKIM1; k=rsa; p=MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA4CmJdTYM+YJ50uZiB2YovkfcXd8uD0HUh7G4kez7tYq3gWVAGd5ZPxdKH95KwCMl58yZGFB4KC6nt9…
mail: v=DKIM1; h=sha256; k=rsa; p=MIGfMA0GCSqGSIb3DQEBAQUAA4GNADCBiQKBgQDdBzXWMfw4utsqJrxEu8vciXWZy7TnmPb1s54UHS0xHrKwi+/izSmQpS4OgfqTWZm3+mtGv9hz…

selectors probed

Certificate (current)

Sectigo Public Server Authentication CA OV R36

from 2025-06-25 to 2026-07-27

Expires in 67 days

Full certificate history on crt.sh ↗

HTTP security headers

Header hygiene 80/100 Checked live page: https://www.bonoparques.es/

present

strict-transport-security
content-security-policy
x-frame-options
x-content-type-options

findings

CSP allows unsafe inline scripts/styles
CSP uses wildcard sources
missing Referrer Policy
missing Permissions Policy

Header values

x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
content-security-policy: default-src 'self'; object-src 'self' blob:; frame-ancestors 'self' flex.cybersource.com; worker-src blob: ; frame-src 'self' blob: *; media-src *; img-src * 'self' data: https: blob:; script-src 'self' 'unsafe-eval' 'unsafe-inline' api.brainsins.com mw.brainsins.com d2xkqxdy6ewr93.cloudfront.net *.cloudfront.net cdn.pushassist.com trc.taboola.com *.collect.igodigital.com resources.convious-app.com client.convious-app.com cdn.taboola.com 510001631.collect.igodigital.com script.hotjar.com 510001630.collect.igodigital.com static.hotjar.com launch-9151dc1e0eb6-development mstat.acestream.net www.gstatic.com flex.cybersource.com pe-kw.store.kennywood.com pe-cp.store.castlepark.com www.google.com connect.facebook.net googleads.g.doubleclick.net www.googleadservices.com www.googletagmanager.com www.google-analytics.com *.parquesreunidos.es *.optickssecurity.com *.opticksstatic.com *.opticksprotection.com opticksprotection.com assets.adobedtm.com amplify.review-alerts.com static-eu.payme
strict-transport-security: max-age=31557600