bvna.com

HTML metadata

Title

Home | North America

Language

en

Generator

Drupal 10 (https://www.drupal.org)

Canonical

https://www.bvna.com/

Translations

en

Technology

CDN: Amazon CloudFront
Server: nginx
CMS: Drupal

Analytics

Google Tag Manager

Third-party hosts loaded (1)

www.googletagmanager.com×1

Social

Contact

Phone

18883577020

Registration

Registrar

CSC Corporate Domains, Inc.

Created

2001-12-15

Expires

2026-12-15 210 days left

Updated

2025-12-11

Name servers

dns1.cscdns.net
dns2.cscdns.net

DNS records live

NS

dns1.cscdns.net
dns2.cscdns.net

MX

10 mxa-0037c801.gslb.pphosted.com
10 mxb-0037c801.gslb.pphosted.com
32767 ms69742970.msv1.invalid.bvna.com

TXT

Show 7 TXT records

pardot910472=c4bf0c0f0081e5f7b04c3ad649ea65059e84924c07809267da630cc014c2229a
GXfkww0g3ekyg/kKfVNVv9Fbf0ypuF9Uaqzppqqly+m9RD1o5GhA6Jlc+f6JAfx6FXyUr2y5DyYfspHCy3Feow==
MS=ms69742970
MS=ms80115765
w2q3yr5w4m22tb3jwkm3y8tfl401v17q
0ed1fe018a4abfae58bc7b40db997c877a0f0c2399
pardot170042=42955c23e188781538b18639a3d81f2682ffc1bd405bd7a2cd586c24649337b4

Email authentication strong

SPF

v=spf1 ip4:217.110.176.77 ip4:89.202.28.177 -all

strict (-all)

DMARC

v=DMARC1; p=quarantine; fo=1; rua=mailto:dmarc_rua@emaildefense.proofpoint.com,mailto:dmarc-reports@bureauveritas.com; ruf=mailto:dmarc_ruf@emaildefense.proofpoint.com,mailto:dmarc-reports@bureauveritas.com

policy: quarantine

DKIM

smtpapi: k=rsa; t=s; p=MIGfMA0GCSqGSIb3DQEBAQUAA4GNADCBiQKBgQDPtW5iwpXVPiH5FzJ7Nrl8USzuY9zqqzjE0D1r04xDN6qwziDnmgcFNNfMewVKN2D1O+2J9N14hRprzByFwfQW76…

selectors probed

Certificate (current)

Amazon RSA 2048 M01

from 2025-12-11 to 2027-01-10

Expires in 236 days

Full certificate history on crt.sh ↗

HTTP security headers

Header hygiene 85/100 Checked live page: https://www.bvna.com/

present

strict-transport-security
content-security-policy
x-frame-options
x-content-type-options
referrer-policy

findings

CSP allows unsafe inline scripts/styles
CSP uses wildcard sources
missing Permissions Policy

Header values

referrer-policy: origin-when-cross-origin
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
content-security-policy: default-src 'self' https://*.bvna.com; script-src 'self' 'unsafe-inline' 'unsafe-eval' blob: *.googletagmanager.com https://cdnjs.cloudflare.com/ajax/libs/codemirror/ https://cdnjs.cloudflare.com/ajax/libs/select2/ https://cdn.rawgit.com/ *.twitter.com *.twimg.com https://*.newrelic.com/ https://*.nr-data.net https://jobs.jobvite.com/__assets__/ https://zoominfo.com/ https://*.zoominfo.com/ https://*.licdn.com/ https://www.googleadservices.com https://*.ads-twitter.com/ https://*.doubleclick.net/ https://*.bing.com/ https://unpkg.com/tippy.js@6.2.6/ https://bureauveritas.accessplanit.com/ https://cdn.jsdelivr.net/ https://tags.clickagy.com/ https://js.adsrvr.org/ https://www.recaptcha.net/ www.gstatic.com/ https://www.google.com/ https://unpkg.com/@popperjs/core@2.11.6/dist/ https://unpkg.com/tippy.js@6.2.6/dist/ https://js.zi-scripts.com/ https://*.bvna.com https://*.privacy-center.org/ https://unpkg.com/xdomain@0.8.2/dist/xdomain.min.js; object-src 'self'; style-src 'self' 'unsafe-in
strict-transport-security: max-age=31536000; includeSubDomains

Links to (7)

Linked from (2)

capfla.com×2
openquire.com×1