gainfront.com

HTML metadata

Title

Gainfront - The Best Supplier Lifecycle Management Software Suite

Description

Gainfront is a supplier lifecycle/ risk management tool that simplifies diversity spend tracking, supplier on-boarding and contracts management.

Language

en-US

Generator

WordPress 6.8

Canonical

https://www.gainfront.com/

Feeds

Gainfront » Feed RSS

Open Graph

url: https://www.gainfront.com/
title: Gainfront - The Best Supplier Lifecycle Management Software Suite
locale: en_US
site name: Gainfront
description: Gainfront is a supplier lifecycle/ risk management tool that simplifies diversity spend tracking, supplier on-boarding and contracts management.

Technology

Server: Apache
CMS: WordPress

Analytics

Google Analytics
Google Tag Manager

Fonts

Google Fonts

Third-party hosts loaded (8)

www.googletagmanager.com×8
fonts.googleapis.com×1
gmpg.org×1
scout-cdn.salesloft.com×1
www.facebook.com×1
www.google-analytics.com×1
www.google.com×1
www.gstatic.com×1

Social

Registration

Registrar

GoDaddy.com, LLC

Created

2019-06-06

Expires

2026-06-06 16 days left

Updated

2025-09-09

Name servers

pdns07.domaincontrol.com
pdns08.domaincontrol.com

DNS records live

NS

pdns07.domaincontrol.com
pdns08.domaincontrol.com

MX

0 gainfront-com.mail.protection.outlook.com

TXT

pardot1035443=90d2a25b60e25247ef7874920a38fcc250adc06311dfe12b8bff83dfb1f54b0d
sending_domain1035443=2ffec949e4f2fa48bf6364553a7b098d8c8d3fb76d219de06118e82c7b8748d2

Verified for

Anthropic
Apple
Atlassian
Google

Email authentication strong

SPF

v=spf1 include:spf.protection.outlook.com include:21417328.spf06.hubspotemail.net include:spf.constantcontact.com include:mailgun.org include:aspmx.pardot.com ~all

softfail (~all)

DMARC

v=DMARC1;p=reject;sp=reject;adkim=r;aspf=r;pct=100;fo=1;rf=afrf;ri=86400;rua=mailto:webmaster@gainfront.com;ruf=mailto:webmaster@gainfront.com

policy: reject (enforced) · sp=reject

DKIM

selector1: v=DKIM1; k=rsa; p=MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAvv6/gQF6oRVYgCuMdurGNvQSZFc9iWAF8Zsrv4V4ZjBIt0IfqFjrhJuMC99xwHZ5/reVCJVyAEZ743…
selector2: v=DKIM1; k=rsa; p=MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAuwU9RcHUjP3vLzDizxpiApchUidWVXTDy0kO3ezLgiPZl79KoFJEJa0jMaLlUm8x31GuHnxpyPC6LE…

selectors probed

Certificate (current)

R12

from 2026-03-30 to 2026-06-28

Expires in 38 days

Full certificate history on crt.sh ↗

HTTP security headers

Header hygiene 90/100 Checked live page: https://www.gainfront.com/

present

strict-transport-security
content-security-policy
x-frame-options
x-content-type-options
referrer-policy
permissions-policy

findings

CSP uses wildcard sources
weak frame protection

Header values

referrer-policy: no-referrer-when-downgrade
x-frame-options: ALLOW-FROM 'self'
permissions-policy: sync-xhr=(self), fullscreen=(self "https://www.youtube.com"), autoplay=(self "https://www.youtube.com")
x-content-type-options: nosniff
content-security-policy: frame-src 'self' *.hotjar.com *.hsforms.com *.wp.com *.doubleclick.net www.google.com *.youtube.com *.googletagmanager.com *.gainfront.com *.pipedrive.com *.pipedriveassets.com; frame-ancestors 'self' *.hsforms.com *.wp.com *.doubleclick.net *.google.com *.gainfront.com *.pipedrive.com; report-uri /csp.php; font-src https: 'self' chrome-extension *.googleapis.com data:; img-src https: 'self' *.wp.com www.google.com data:; connect-src 'self' *.hscollectedforms.net *.salesloft.com cdn.linkedin.oribi.io wss://ws37.hotjar.com *.hotjar.com *.wp.com *.hsforms.com hubspot-forms-static-embed.s3.amazonaws.com *.hubspot.com *.hubapi.com stats.g.doubleclick.net *.google-analytics.com public-api.wordpress.com *.ip-api.com *.alocdn.com *.amazonaws.com *.google.com *.linkedin.com https://pro.ip-api.com https://alocdn.com/c/vn3d8u2u/a/xtarget/p.json https://*.execute-api.us-west-2.amazonaws.com https://a.usbrowserspeed.com https://*.liadm.com www.googletagmanager.com www.google.com www.googleadservi
strict-transport-security: max-age=31536000; includeSubDomains; preload

Links to (5)

Linked from (1)

quantumsds.com×5