fysiomosae.nl

.nl crawl

First seen 2026-05-16 · Last seen 2026-05-30 · ok HTTP/1.1 200 1613 ms crawled 2026-05-20

NL · 45.152.250.10 · AS205876 Hoasted B.V.

Reputation 94/100 dmarc monitor-only

Classifying

HTML metadata

Title

Fysio Mosae Maastricht - Fysiotherapeut in Maastricht

Description

Fysio Mosae Maastricht, dé praktijk voor Fysiotherapie in Maastricht. Op zoek naar een professionele Fysiotherapeut in Maastricht? Fysio Mosae Maastricht

Language

nl-NL

Generator

Elementor 4.0.9; features: additional_custom_breakpoints; settings: css_print_method-external, google_font-enabled, font_display-auto

Canonical

https://fysiomosae.nl/

Feeds

Open Graph

url: https://fysiomosae.nl/
title: Fysio Mosae Maastricht - Fysiotherapeut in Maastricht
locale: nl_NL
site name: Fysio Mosae Maastricht
description: Fysio Mosae Maastricht, dé praktijk voor Fysiotherapie in Maastricht. Op zoek naar een professionele Fysiotherapeut in Maastricht? Fysio Mosae Maastricht
updated time: 2025-08-06T13:57:12+02:00

Technology

Server: LiteSpeed
CMS: WordPress
jQuery: 3.7.1

Analytics

Google Tag Manager

Third-party hosts loaded (3)

www.googletagmanager.com×2
gmpg.org×1
www.google.com×1

Social

Contact

Email

info@fysiomosae.nl

Phone

0433474073

Registration

Registrar

Hosting Secure

Created

2023-12-04

Updated

2025-08-28

Name servers

ns3.hoasted.com
ns1.hoasted.nl
ns2.hoasted.eu

DNS records live

NS

ns1.043web.nl
ns2.043web.nl
ns3.043web.nl

MX

1 fysiomosae-nl.mail.protection.outlook.com

Verified for

Microsoft 365

Email authentication partial

SPF: v=spf1 a mx include:spf.protection.outlook.com include:spf.myfasthosting.com include:intramedonline.nl -all
strict (-all)
DMARC: v=DMARC1;p=none;
policy: none (monitoring only)
DKIM: no key found at common selectors

Certificate (current)

from 2026-04-28 to 2026-07-27

Expires in 56 days

Full certificate history on crt.sh ↗

HTTP security headers

Header hygiene 85/100 Checked live page: https://fysiomosae.nl/

present

strict-transport-security
content-security-policy
x-frame-options
x-content-type-options
referrer-policy
permissions-policy

findings

CSP allows unsafe inline scripts/styles
CSP uses wildcard sources
weak frame protection

Header values

referrer-policy: strict-origin-when-cross-origin
x-frame-options: ALLOW-FROM https://tv.043data.nl
permissions-policy: fullscreen=(self)
x-content-type-options: nosniff
content-security-policy: default-src 'self'; script-src 'self' 'unsafe-inline' 'unsafe-eval' blob: *; style-src 'self' 'unsafe-inline' *; img-src 'self' data: blob: *; font-src 'self' data: *; object-src 'none'; media-src 'self' *; connect-src *; frame-src 'self' blob: *; frame-ancestors 'self' https://portfolio.043wp.nl https://tv.043data.nl; base-uri 'self'; form-action 'self' *; upgrade-insecure-requests
strict-transport-security: max-age=31536000