budgetfitter.uk

HTML metadata

Title

BudgetFitter: Verified Discount Codes & The Urban Survival Ecosystem

Description

Stop paying the lazy tax. We are your ally in the urban jungle. Get verified discount codes, tools, and hacks to Move, Live, Grow and Connect smarter.

Language

en-GB

Generator

Site Kit by Google 1.178.0

Canonical

https://budgetfitter.uk/

Translations

en

Feeds

BudgetFitter » Feed RSS

Open Graph

url: https://budgetfitter.uk/
title: BudgetFitter: Verified Discount Codes & The Urban Survival Ecosystem
site name: BudgetFitter
description: Stop paying the lazy tax. We are your ally in the urban jungle. Get verified discount codes, tools, and hacks to Move, Live, Grow and Connect smarter.

Technology

CDN: Cloudflare
CMS: WordPress

Analytics

Cloudflare Insights
Google Tag Manager

Fonts

Google Fonts

Third-party hosts loaded (5)

i0.wp.com×61
fonts.googleapis.com×2
fonts.gstatic.com×1
static.cloudflareinsights.com×1
www.googletagmanager.com×1

Social

Contact

Phone

00004088233

Address

124 City Road, EC1V 2NX, London, GB

Registration

Registrar

Cloudflare, Inc.

Created

2025-02-06

Expires

2027-02-06 262 days left

Updated

2026-01-07

Name servers

eoin.ns.cloudflare.com.
uma.ns.cloudflare.com.

DNS records live

NS

eoin.ns.cloudflare.com
uma.ns.cloudflare.com

MX

1 aspmx.l.google.com
10 alt3.aspmx.l.google.com
10 alt4.aspmx.l.google.com
5 alt1.aspmx.l.google.com
5 alt2.aspmx.l.google.com

TXT

mailerlite-domain-verification=5a40cd235c43f09d7ceff704aa0aa099d81fd94e
firebase=budgetfitter

Verified for

Google

Email authentication strong

SPF

v=spf1 include:_spf.google.com a mx include:_spf.mlsend.com include:_spf.firebasemail.com ~all

softfail (~all)

DMARC

v=DMARC1; p=quarantine; rua=mailto:9688969bb9404ca58ad64538dfb64002@dmarc-reports.cloudflare.net,mailto:d95f3cf36849436caf3302aa395954c9@dmarc-reports.cloudflare.net,mailto:spam@budgetfitter.uk; aspf=r; adkim=r;

policy: quarantine

DKIM

google: v=DKIM1; k=rsa; p=MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAnW3ny8IhtuGy4RawiMybg9eK61UWbXlCWcecC82uIhJHVmS0rH3ZtsxBzkpbe1SJRLtEdJAnwta4Qa…

selectors probed

Certificate (current)

WE1

from 2026-05-06 to 2026-05-20

Expires in 0 days

Full certificate history on crt.sh ↗

HTTP security headers

Header hygiene 90/100 Checked live page: https://budgetfitter.uk/

present

strict-transport-security
content-security-policy
x-frame-options
x-content-type-options
referrer-policy
permissions-policy

findings

CSP allows unsafe inline scripts/styles
CSP uses wildcard sources

Header values

referrer-policy: strict-origin-when-cross-origin
x-frame-options: SAMEORIGIN
permissions-policy: geolocation=(), midi=(), sync-xhr=(), microphone=(), camera=(), magnetometer=(), gyroscope=(), fullscreen=(self), payment=()
x-content-type-options: nosniff
content-security-policy: default-src 'self'; script-src 'self' 'unsafe-inline' 'unsafe-eval' https://*.cloudflareinsights.com https://*.cloudflare.com https://*.jsdelivr.net https://cdn.plot.ly https://*.mailerlite.com https://*.mlcdn.com https://*.ampproject.org https://*.clarity.ms blob:; style-src 'self' 'unsafe-inline' https://*.googleapis.com https://*.jsdelivr.net https://*.mailerlite.com https://*.mlcdn.com; worker-src 'self' blob:; font-src 'self' data: https://*.gstatic.com; img-src 'self' data: https://secure.gravatar.com https://*.cloudflare.com https://quickchart.io https://*.google-analytics.com https://*.doubleclick.net https://*.google.com https://*.googletagmanager.com https://*.4sqi.net https://*.clarity.ms https://*.wp.com https://i0.wp.com https://i1.wp.com https://i2.wp.com; frame-src 'self' https://*.cloudflare.com https://*.canva.com; connect-src 'self' https://*.cloudflareinsights.com https://*.google-analytics.com https://*.doubleclick.net https://*.cloudfunctions.net https://*.c
strict-transport-security: max-age=31536000; includeSubDomains; preload

Links to (9)

Linked from (1)

fozdigital.com×1