foundationforsmfm.org
foundationforsmfm.org
HTML metadata
Technology
- CMS
- Gatsby
- Analytics
-
- Google Tag Manager
- Fonts
-
- Google Fonts
Third-party hosts loaded (12)
- cdn.givecloud.co×40
- cdnjs.cloudflare.com×1
- d2wy8f7a9ursnm.cloudfront.net×1
- fonts.googleapis.com×1
- foundationforsmfm.com×1
- foundationforsmfm.donorshops.com×1
- foundationforsmfm.givecloud.co×1
- foundationforsmfm.net×1
- www.foundationforsmfm.com×1
- www.foundationforsmfm.net×1
- www.google.com×1
- www.googletagmanager.com×1
Social
Registration
- Registrar
- Wild West Domains, LLC
- Created
- 2016-11-22
- Expires
- 2026-11-22 185 days left
- Updated
- 2026-01-06
- Name servers
-
- ns1.mediatemple.net
- ns2.mediatemple.net
DNS records live
- NS
-
- ns1.mediatemple.net
- ns2.mediatemple.net
- MX
-
- 10 mail.foundationforsmfm.org
- TXT
-
notokenfoundiklsu1m6kq1p9r9fp94rcr2h4obpopsoch2setrdg3ic1kridmqf
Email authentication weak
- SPF
- not published
- DMARC
- not published
- DKIM
- no key found at common selectors
Certificate (current)
R13
Expires in 27 days
HTTP security headers
- present
-
- strict-transport-security
- content-security-policy
- x-frame-options
- x-content-type-options
- referrer-policy
- findings
-
- CSP allows unsafe inline scripts/styles
- CSP uses wildcard sources
- missing Permissions Policy
Header values
- referrer-policy
no-referrer-when-downgrade- x-frame-options
SAMEORIGIN- x-content-type-options
nosniff- content-security-policy
default-src * 'unsafe-inline' 'unsafe-eval'; script-src * 'unsafe-inline' 'unsafe-eval'; connect-src * 'unsafe-inline'; img-src * data: blob: 'unsafe-inline'; frame-src *; style-src * 'unsafe-inline'; frame-ancestors 'self'; form-action *;- strict-transport-security
max-age=31536000
Links to (6)
- facebook.com×2
- givecloud.co×2
- instagram.com×2
- smfm.org×2
- x.com×2
- youtube.com×2