culturadearagon.es

.es crawl

First seen 2026-06-03 · Last seen 2026-06-03 · ok HTTP/1.1 200 498 ms crawled 2026-06-04

ES · 82.98.190.118 · AS42612 DinaHosting S.L.

Reputation 87/100 weak security headers no dmarc policy

Classifying

HTML metadata

Title

Cultura de Aragón | Cultura de Aragón

Language

Generator

CulturaenAragon - Child v.4.14.7.1645180274

Canonical

https://culturadearagon.es/

Feeds

Open Graph

title: Cultura de Aragón | Cultura de Aragón
locale: es_ES
site name: Cultura de Aragón

Technology

Server: HTTPd
CMS: WordPress
jQuery: 3.7.1

Analytics

Google Tag Manager

Third-party hosts loaded (1)

www.googletagmanager.com×2

Social

DNS records live

NS

ns.gestiondecuenta.com
ns2.gestiondecuenta.com
ns3.gestiondecuenta.com
ns4.gestiondecuenta.com

MX

10 mail.culturadearagon.es

Verified for

Google

Email authentication weak

SPF

v=spf1 a mx ~all

softfail (~all)

DMARC

not published

DKIM

default: v=DKIM1; g=*; k=rsa; p=MIGfMA0GCSqGSIb3DQEBAQUAA4GNADCBiQKBgQDQO+jG5RdF4fyjIyNvIUwhXNpLfyfiw8nVzpQXdUxrqXvpPdxcITa73qQ94RsXS7FbkQ/OstSpC427R…

selectors probed

Certificate (current)

R13

from 2026-04-08 to 2026-07-07

Expires in 31 days

Full certificate history on crt.sh ↗

HTTP security headers

Header hygiene 40/100 Checked live page: https://culturadearagon.es/

present

content-security-policy

findings

missing HSTS
CSP allows unsafe inline scripts/styles
CSP uses wildcard sources
missing frame protection
missing content type protection
missing Referrer Policy
missing Permissions Policy

Header values

content-security-policy: script-src 'self' data: blob: 'unsafe-inline' 'unsafe-eval' ; img-src 'self' data: blob: ; object-src 'self' data: blob: https://elegantthemes.com/ https://*.elegantthemes.com/ https://culturadearagon.es/; frame-src 'self' data: blob: https://elegantthemes.com/ https://*.elegantthemes.com/ https://culturadearagon.es/;

Links to (4)

Linked from (1)

judithprat.com×1