cmsbox.ch

.ch crawl

First seen 2026-05-20 · Last seen 2026-05-31 · ok HTTP/1.1 200 3395 ms crawled 2026-05-27

CH · 217.11.221.200 · AS15576 NTS workspace AG

Reputation 92/100 no dmarc policy

Classifying

HTML metadata

Title: cmsbox - Webagentur mit System
Description: Cmsbox ist deine Webagentur aus Bern mit eigenem CMS, Schweizer Hosting und einem Team, das Websites als Teil deines digitalen Systems denkt. Individuelle Webprojekte, die wachsen.
Language: de
Generator: Cmsbox 3.0

Open Graph

url: https://www.cmsbox.ch/cms
title: cmsbox - Webagentur mit System
locale: de_DE
description: Das Content Management System cmsbox macht das Editieren von Websites zur Nebensache. Wir setzen dein individuelles Design innerhalb von 10 Arbeitstagen um.

Technology

Server: nginx

Analytics

Google Tag Manager

Third-party hosts loaded (2)

www.google.com×1
www.googletagmanager.com×1

Social

Contact

Phone

+41 31 356 42 52

DNS records live

NS

ns1.netstyle.ch
ns2.netstyle.ch
ns3.netstyle.ch

MX

10 mx.cmsbox.com

Email authentication weak

SPF

v=spf1 include:_spf.cmsbox.com include:servers.mcsv.net -all

strict (-all)

DMARC

not published

DKIM

k2: v=DKIM1; k=rsa; p=MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAv2aC2KjGKLOwTweBY5A9RpjsxaBXR9r7OAU6U8/zn92ivImI75naUujWbItRI/QmL1jy5PWGqLwoUA…

selectors probed

Certificate (current)

R13

from 2026-04-10 to 2026-07-09

Expires in 38 days

Full certificate history on crt.sh ↗

HTTP security headers

Header hygiene 90/100 Checked live page: https://www.cmsbox.ch/cms

present

strict-transport-security
content-security-policy
x-frame-options
x-content-type-options
referrer-policy
permissions-policy

findings

CSP allows unsafe inline scripts/styles
CSP uses wildcard sources

Header values

referrer-policy: strict-origin-when-cross-origin
x-frame-options: SAMEORIGIN
permissions-policy: geolocation=(),midi=(),sync-xhr=(),microphone=(),camera=(),magnetometer=(),gyroscope=(),fullscreen=(self),payment=()
x-content-type-options: nosniff
content-security-policy: default-src 'self'; script-src 'self' 'unsafe-inline' 'unsafe-eval' https://tracker.cmsbox.com https://w.chatlio.com *.google-analytics.com *.googletagmanager.com *.googleapis.com *.gstatic.com *.google.com *.ggpht.com *.googleusercontent.com *.roomfinder.immo blob:; style-src 'self' 'unsafe-inline' https://w.chatlio.com *.myfonts.net *.googleapis.com *.roomfinder.immo; font-src 'self' *.gstatic.com *.roomfinder.immo; img-src 'self' https://tracker.cmsbox.com https://w.chatlio.com https://avatars.slack-edge.com https://files.slack.com https://files-origin.slack.com https://secure.gravatar.com https://uploads-cdn.chatlio.com *.google-analytics.com *.googletagmanager.com *.gstatic.com *.googleapis.com *.google.com *.googleusercontent.com *.roomfinder.immo data:; frame-src 'self' snazzymaps.com *.google.com *.youtube.com *.vimeo.com *.roomfinder.immo; connect-src 'self' https://tracker.cmsbox.com https://api.chatlio.com https://api-cdn.chatlio.com wss://push.chatlio.com wss://ws.pusherap
strict-transport-security: max-age=15768000

Links to (9)

Linked from (18)