ecchr.eu

HTML metadata

Title

ECCHR: European Center for Constitutional and Human Rights

Description

Dem Unrecht das Recht entgegensetzen – das ist das erklärte Ziel und die tägliche Arbeit des European Center for Constitutional and Human Rights (ECCHR).

Language

de

Generator

TYPO3 CMS

Canonical

https://www.ecchr.eu/

Translations

de
en

Open Graph

title: European Center for Constitutional and Human Rights
image:url: https://www.ecchr.eu/fileadmin/_processed_/a/4/csm_MRmitjurMitteln_DE_FB_a4bc78ef6c.png
description: Dem Unrecht das Recht entgegensetzen – das ist das erklärte Ziel und die tägliche Arbeit des European Center for Constitutional and Human Rights (ECCHR).

Technology

Server: Apache

Cookie consent

Cookiebot

Third-party hosts loaded (2)

consent.cookiebot.com×1
maps.googleapis.com×1

Social

Contact

Email

info@ecchr.eu

DNS records live

NS

ns5.kasserver.com
ns6.kasserver.com

MX

0 ecchr-eu.mail.protection.outlook.com

TXT

Show 4 TXT records

anny-verification=96bde531-9eb5-4e22-9605-731fc30c83ef
google-site-verification=cYqTCrrMqP3Gh-cnHuIJTvYnvT8HBMDywpEwvsiQQTg
v=spf1 a mx include:spf.crsend.com include:spf.civilisten.io include:csa.wwwserver.net include:spf.protection.outlook.com ~all
MS=ms52177527

Certificate (current)

R12

from 2026-03-12 to 2026-06-10

Expires in 22 days

Full certificate history on crt.sh ↗

HTTP security headers

Header hygiene 50/100 Checked live page: https://www.ecchr.eu/

present

content-security-policy
content-security-policy-report-only
x-content-type-options

findings

missing HSTS
CSP allows unsafe inline scripts/styles
CSP uses wildcard sources
missing frame protection
missing Referrer Policy
missing Permissions Policy

Header values

x-content-type-options: nosniff
content-security-policy: default-src 'self'; script-src 'self' 'nonce-LGWO9TKoTv0euVCl85ljmMYfStctqLRFccOomqYcJ9wPGw-coa7MoQ' 'wasm-unsafe-eval' https://matomo.ecchr.eu https://consent.cookiebot.com https://consentcdn.cookiebot.com https://connect.facebook.net https://*.googleapis.com https://js.hcaptcha.com https://spenden.twingle.de 'report-sample'; style-src-attr 'unsafe-inline' 'report-sample'; img-src 'self' data: *.ytimg.com *.vimeocdn.com https://imgsct.cookiebot.com https://*.gstatic.com https://*.googleapis.com https://*.google.com https://*.googleusercontent.com https://*.ggpht.com https://www.facebook.com; base-uri 'self'; frame-src 'self' *.youtube-nocookie.com *.youtube.com *.vimeo.com https://consentcdn.cookiebot.com https://newassets.hcaptcha.com https://loa.ecchr.eu/ https://loa-staging.ecchr.eu/ https://spenden.twingle.de/; worker-src 'self' blob:; media-src 'self' data:; style-src 'self' 'unsafe-inline' blob: https://*.googleapis.com https://*.gstatic.com 'report-sample'; style-src-elem 'self
content-security-policy-report-only: default-src 'self'; script-src 'self' 'nonce-LGWO9TKoTv0euVCl85ljmMYfStctqLRFccOomqYcJ9wPGw-coa7MoQ' 'wasm-unsafe-eval' https://matomo.ecchr.eu https://consent.cookiebot.com https://consentcdn.cookiebot.com https://connect.facebook.net https://*.googleapis.com https://js.hcaptcha.com https://spenden.twingle.de 'report-sample'; style-src-attr 'unsafe-inline' 'report-sample'; img-src 'self' data: *.ytimg.com *.vimeocdn.com https://imgsct.cookiebot.com https://*.gstatic.com https://*.googleapis.com https://*.google.com https://*.googleusercontent.com https://*.ggpht.com https://www.facebook.com; base-uri 'self'; frame-src 'self' *.youtube-nocookie.com *.youtube.com *.vimeo.com https://consentcdn.cookiebot.com https://newassets.hcaptcha.com https://loa.ecchr.eu/ https://loa-staging.ecchr.eu/ https://spenden.twingle.de/; worker-src 'self' blob:; media-src 'self' data:; style-src 'self' 'unsafe-inline' blob: https://*.googleapis.com https://*.gstatic.com 'report-sample'; style-src-elem 'self