foreverliving.it
foreverliving.it
HTML metadata
Technology
- CDN
- Cloudflare
- CMS
- WordPress
- jQuery
- 3.6.0
- Stack
- PHP
- Analytics
-
- Google Tag Manager
- Cookie consent
-
- Iubenda
- Fonts
-
- Google Fonts
Third-party hosts loaded (9)
- cdn.iubenda.com×4
- cdn.jsdelivr.net×2
- cdn.scalapay.com×2
- code.jquery.com×2
- fonts.googleapis.com×2
- cdnjs.cloudflare.com×1
- cs.iubenda.com×1
- www.google.com×1
- www.googletagmanager.com×1
Social
Contact
- Phone
DNS records live
- NS
-
- noel.ns.cloudflare.com
- tegan.ns.cloudflare.com
- MX
-
- 0 foreverliving-it.mail.protection.outlook.com
- Verified for
-
- Microsoft 365
Email authentication weak
- SPF
-
v=spf1 include:spf.protection.outlook.com -allstrict (-all) - DMARC
- not published
- DKIM
-
- selector1:
v=DKIM1; k=rsa; p=MIGfMA0GCSqGSIb3DQEBAQUAA4GNADCBiQKBgQC1lNVxdXqpmVamyP3RZcgSPcyiZCfiZLIwDrW8iacHNj6M3JnqGXWRLGq4Ou5eCBZ+Qt28XT/nfSTkF/EzBZ…
selectors probed - selector1:
Certificate (current)
WE1
Expires in 76 days
HTTP security headers
- present
-
- content-security-policy
- x-frame-options
- x-content-type-options
- findings
-
- missing HSTS
- CSP allows unsafe inline scripts/styles
- CSP uses wildcard sources
- weak frame protection
- missing Referrer Policy
- missing Permissions Policy
Header values
- x-frame-options
SAMEORIGIN, sameorigin- x-content-type-options
nosniff- content-security-policy
frame-ancestors 'self' https://www.foreverliving.it https://foreverliving.it https://shop.foreverliving.it https://test.foreverliving.it; upgrade-insecure-requests; script-src 'self' 'unsafe-eval' www.foreverliving.it foreverliving.it 'unsafe-inline' test.foreverliving.it shop.foreverliving.it cdn.iubenda.com cdn.jsdelivr.net cdn.scalapay.com cs.iubenda.com embed.tawk.to www.google.com www.google-analytics.com www.googletagmanager.com www.gstatic.com googleads.g.doubleclick.net *.sharethis.com sibautomation.com *.paypal.com *.vimeo.com *.cloudflare.com *.jquery.com maps.google.com *.googleapis.com;