datawise-project.eu
datawise-project.eu
HTML metadata
Technology
- Server
- Apache
- CMS
- WordPress 7.0
- jQuery
- 3.7.1
- Analytics
-
- Google Tag Manager
Third-party hosts loaded (2)
- www.googletagmanager.com×2
- gmpg.org×1
Social
DNS records live
- NS
-
- server4.datawise-project.eu
- MX
-
- 10 server4.datawise-project.eu
Email authentication weak
- SPF
- not published
- DMARC
- not published
- DKIM
- no key found at common selectors
Certificate (current)
E7
Expires in 46 days
HTTP security headers
- present
-
- content-security-policy
- x-frame-options
- x-content-type-options
- referrer-policy
- permissions-policy
- findings
-
- missing HSTS
- CSP allows unsafe inline scripts/styles
- CSP uses wildcard sources
Header values
- referrer-policy
strict-origin-when-cross-origin- x-frame-options
SAMEORIGIN- permissions-policy
private-state-token-redemption=(self "https://www.google.com" "https://www.gstatic.com" "https://recaptcha.net" "https://challenges.cloudflare.com" "https://hcaptcha.com"), private-state-token-issuance=(self "https://www.google.com" "https://www.gstatic.com" "https://recaptcha.net" "https://challenges.cloudflare.com" "https://hcaptcha.com")- x-content-type-options
nosniff- content-security-policy
default-src 'self' 'unsafe-inline' 'unsafe-eval' data: blob: https:; worker-src 'self' blob:; child-src 'self' blob: https://www.google.com https://*.google.com https://*.googleapis.com https://*.gstatic.com https://accounts.google.com https://*.youtube.com; frame-src 'self' blob: https://www.google.com https://*.google.com https://*.googleapis.com https://*.gstatic.com https://accounts.google.com https://*.youtube.com https://platform.twitter.com https://*.twitter.com https://*.twimg.com;