decouverte-et-voyage.com
decouverte-et-voyage.com
HTML metadata
Technology
- CDN
- Cloudflare
- CMS
- WordPress
- jQuery
- 3.2.1 known XSS (<3.5)
- Stack
- PHP
- Fonts
-
- Google Fonts
Third-party hosts loaded (3)
- cdnjs.cloudflare.com×4
- code.jquery.com×1
- fonts.googleapis.com×1
Registration
- Registrar
- Namebay SAM
- Created
- 2020-05-24
- Expires
- 2027-05-24 356 days left
- Updated
- 2026-05-08
- Name servers
-
- fish.ns.cloudflare.com
- nikon.ns.cloudflare.com
DNS records live
- NS
-
- fish.ns.cloudflare.com
- nikon.ns.cloudflare.com
- MX
-
- 10 _dc-mx.ec145b8001a2.decouverte-et-voyage.com
- 10 _dc-mx.f8ebfe3682a1.decouverte-et-voyage.com
Email authentication weak
- SPF
- not published
- DMARC
- not published
- DKIM
- no key found at common selectors
Certificate (current)
WE1
Expires in 37 days
HTTP security headers
- present
-
- content-security-policy
- x-frame-options
- x-content-type-options
- referrer-policy
- permissions-policy
- findings
-
- missing HSTS
- CSP allows unsafe inline scripts/styles
- weak frame protection
- weak content type protection
Header values
- referrer-policy
strict-origin-when-cross-origin, strict-origin-when-cross-origin, same-origin, strict-origin-when-cross-origin- x-frame-options
SAMEORIGIN, SAMEORIGIN, SAMEORIGIN, SAMEORIGIN- permissions-policy
geolocation=(), microphone=(), camera=()- x-content-type-options
nosniff, nosniff, nosniff, nosniff- content-security-policy
default-src 'self' https: data: 'unsafe-inline' 'unsafe-eval';, default-src 'self' https: data: 'unsafe-inline' 'unsafe-eval';