cibtvisas.no

HTML metadata

Title: Visum for forretnings- og fritidsreiser | Raskt, enkelt, trygt
Description: CIBTvisas er den globale lederen innen visum. Millioner av utenlandsreisende har betrodd CIBTvisas å skaffe dem forretnings- eller turistvisum.
Language: nb
Canonical: https://cibtvisas.no/

Open Graph

url: http://cibtvisas.no/
title: Visum for forretnings- og fritidsreiser | Raskt, enkelt, trygt
description: CIBTvisas er den globale lederen innen visum. Millioner av utenlandsreisende har betrodd CIBTvisas å skaffe dem forretnings- eller turistvisum.

Technology

CDN: Cloudflare

Analytics

Google Tag Manager

Fonts

Google Fonts

Third-party hosts loaded (4)

fonts.googleapis.com×2
www.googletagmanager.com×2
ajax.googleapis.com×1
fonts.gstatic.com×1

Social

Registration

Registrar

Web Solutions A/S

Created

2021-05-26

Updated

2025-05-26

Name servers

jamie.ns.cloudflare.com
nolan.ns.cloudflare.com

DNS records live

NS

jamie.ns.cloudflare.com
nolan.ns.cloudflare.com

MX

0 cibtvisas-no.mail.protection.outlook.com

TXT

Show 5 TXT records

knowbe4-site-verification=63912bacc19f4df6aa5fc58f1be156c0
m8f2l86u619nojmq1dcedhn4ki
t41uajf9jqcgntbiu1pdavepfi
v=verifydomain MS=4878407
jjm5r9ocm2ptb71mfer9biup88

Email authentication strong

SPF

v=spf1 include:_spf-c.cibt.com include:spf.protection.outlook.com -all

strict (-all)

DMARC

v=DMARC1; p=reject; rua=mailto:42d2557a2906367@rep.dmarcanalyzer.com; ruf=mailto:42d2557a2906367@for.dmarcanalyzer.com; fo=1;

policy: reject (enforced)

DKIM

selector1: v=DKIM1; k=rsa; p=MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAy4lwqa4ghZltMAHt3U5uUawkQRhITrhpDGBgxmhAg/dx1eqLEAAP9tn0awaxF3DoyIOO48m9tQ9Iv8…
selector2: v=DKIM1; k=rsa; p=MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAlPQ2kzWaCtxidW5noegPvI3aSfG5aOdxICwyL+NUq8JNgJSzBhOzalDIUDD0Gl9A72ZSAV2yM+AggK…

selectors probed

Certificate (current)

E7

from 2026-04-01 to 2026-06-30

Expires in 42 days

Full certificate history on crt.sh ↗

HTTP security headers

Header hygiene 80/100 Checked live page: https://cibtvisas.no/

present

strict-transport-security
content-security-policy
x-frame-options
x-content-type-options

findings

CSP allows unsafe inline scripts/styles
CSP uses wildcard sources
missing Referrer Policy
missing Permissions Policy

Header values

x-frame-options: sameorigin
x-content-type-options: nosniff
content-security-policy: default-src * 'self' 'unsafe-inline'; script-src * 'self' 'unsafe-inline' 'unsafe-eval' https://acsbapp.com/ https://*.googleapis.com/ https://bat.bing.com/ https://*.quantummetric.com/ https://*.osano.com/ https://*.doubleclick.net/ https://*.google-analytics.com/ https://www.googletagmanager.com/ https://*.google.com https://*.google.co.uk https://js.stripe.com/ https://cdn.logrocket.io https://cdn.lr-ingest.io https://cdn.lr-in.com https://cdn.lr-in-prod.com https://cdn.lr-ingest.com https://cdn.ingest-lr.com https://cdn.lr-intake.com https://cdn.intake-lr.com https://cdn.logr-ingest.com https://cdn.lrkt-in.com https://cdn.lgrckt-in.com/ blob: 'unsafe-inline' 'unsafe-eval' 'self'; frame-ancestors 'self'; form-action *; font-src https://fonts.gstatic.com/ https://*.acsbapp.com 'self' data:; img-src www.googletagmanager.com https://*.acsbapp.com https://www.facebook.com https://*.bing.com https://*.google.com https://*.google.co.uk https://*.google.co.in https://*.google.rs https://*.
strict-transport-security: max-age=15724800; includeSubDomains