indexo.dev

gitem.fr

.fr crawl

First seen 2026-04-22 · Last seen 2026-05-16 · ok HTTP/1.1 200 5040 ms crawled 2026-05-16

US · 172.66.147.234 · AS13335 Cloudflare, Inc.

Reputation 89/100 weak security headers dmarc monitor-only

Classifying

HTML metadata

Title
Gitem : Spécialiste en électroménager | GITEM
Description
Le meilleur de l'électroménager et du multimédia, près de chez vous. Depuis plus de 50 ans, Gitem vous accompagne lors de vos achats.
Language
fr

Technology

CDN
Cloudflare
CMS
Gatsby
Analytics
  • Cloudflare Insights

Third-party hosts loaded (4)

  • apps.bazaarvoice.com×1
  • eu1-config.doofinder.com×1
  • static.cloudflareinsights.com×1
  • www.facebook.com×1

Social

Registration

Registrar
BDL SYSTEMES dba Systonic
Created
1998-02-24
Expires
2026-06-06 18 days left
Updated
2025-11-22
Name servers
  • dave.ns.cloudflare.com
  • isla.ns.cloudflare.com

DNS records live

NS
  • dave.ns.cloudflare.com
  • isla.ns.cloudflare.com
MX
  • 0 gitem-fr.mail.protection.outlook.com
TXT
  • MS=ms71844374

Email authentication partial

SPF
v=spf1 a mx ip4:185.46.231.84 include:spf.protection.outlook.com ~all
softfail (~all)
DMARC
v=DMARC1; p=none;
policy: none (monitoring only)
DKIM
  • dkim: k=rsa; p=MIGfMA0GCSqGSIb3DQEBAQUAA4GNADCBiQKBgQDMEYxIILVVYTz4muQ4J1H/TTeAIFCoc6P0NS2dhFTK2XlzrbTvl/38oYS3RLPO71VDQ9sv9gjd4C5nT0d1cK3FC2QwZYJ…
selectors probed

Certificate (current)

WE1
from 2026-04-10 to 2026-07-09
Expires in 52 days

Full certificate history on crt.sh ↗

HTTP security headers

Header hygiene 45/100 Checked live page: https://www.gitem.fr/

present
  • content-security-policy-report-only
  • x-frame-options
  • x-content-type-options
findings
  • missing HSTS
  • missing Content Security Policy
  • weak frame protection
  • missing Referrer Policy
  • missing Permissions Policy
Header values
x-frame-options
SAMEORIGIN, SAMEORIGIN
x-content-type-options
nosniff
content-security-policy-report-only
font-src fonts.gstatic.com use.typekit.net *.typekit.net *.gstatic.com www.paypalobjects.com *.flixcar.com *.flixfacts.com https://www.gstatic.com https://fonts.gstatic.com *.fontawesome.com https://fonts.bunny.net 'self' data: data: 'self' 'unsafe-inline'; form-action geostag.cardinalcommerce.com geo.cardinalcommerce.com 1eafstag.cardinalcommerce.com 1eaf.cardinalcommerce.com centinelapistag.cardinalcommerce.com centinelapi.cardinalcommerce.com pilot-payflowlink.paypal.com www.paypal.com www.sandbox.paypal.com *.paypal.com api.bazaarvoice.com stg.api.bazaarvoice.com *.monetico-services.com *.cardinalcommerce.com 3ds-secure.cardcomplete.com www.clicksafe.lloydstsb.com pay.activa-card.com *.wirecard.com acs.sia.eu *.touchtechpayments.com www.securesuite.co.uk rsa3dsauth.com *.monzo.com *.arcot.com *.wlp-acs.com * 'self' 'unsafe-inline'; frame-ancestors 'self'; frame-src fast.amc.demdex.net *.adobe.com bid.g.doubleclick.net *.youtube.com *.youtube-nocookie.com geostag.cardinalcommerce.co

Links to (5)

Linked from (1)