grunenthal.co.uk

.uk crawl

First seen 2026-04-24 · Last seen 2026-05-18 · ok HTTP/1.1 200 17374 ms crawled 2026-05-18

NL · 20.50.2.24 · AS8075 Microsoft Corporation

Reputation 92/100 no dmarc policy

Classifying

HTML metadata

Title: Grünenthal Limited, United Kingdom | Grunenthal UK
Description: We are an ambitious and dynamic business with a healthy, nnovation-driven pipeline that builds on our core expertise in pain.
Language: en
Canonical: https://www.grunenthal.co.uk

Open Graph

url: https://www.grunenthal.co.uk
title: Grünenthal Limited, United Kingdom | Grunenthal UK
description: We are an ambitious and dynamic business with a healthy, nnovation-driven pipeline that builds on our core expertise in pain.

Technology

CDN: Azure Front Door
CMS: Next.js

Analytics

Matomo

Social widgets

Vimeo Embed

Third-party hosts loaded (5)

edge.sitecorecloud.io×2
cdn.consentmanager.net×1
cdn.matomo.cloud×1
edge-platform.sitecorecloud.io×1
player.vimeo.com×1

Contact

Phone

+4408002545540

Registration

Registrar

Markmonitor Inc.

Created

2005-07-08

Expires

2027-07-08 414 days left

Updated

2025-06-06

Name servers

ns1.markmonitor.com.
ns2.markmonitor.com.
ns3.markmonitor.com.
ns4.markmonitor.com.
ns5.markmonitor.com.
ns6.markmonitor.com.
ns7.markmonitor.com.

DNS records live

NS

ns1.markmonitor.com
ns2.markmonitor.com
ns3.markmonitor.com
ns4.markmonitor.com
ns5.markmonitor.com
ns6.markmonitor.com
ns7.markmonitor.com

MX

10 relay1.netnames.net
100 relay2.netnames.net

TXT

mp9n7169cf57faah47lsq16cl

Email authentication weak

SPF: not published
DMARC: not published
DKIM: no key found at common selectors

Certificate (current)

GeoTrust TLS RSA CA G1

from 2026-02-22 to 2026-08-23

Expires in 95 days

Full certificate history on crt.sh ↗

HTTP security headers

Header hygiene 85/100 Checked live page: https://www.grunenthal.co.uk/

present

strict-transport-security
content-security-policy
x-frame-options
x-content-type-options
referrer-policy

findings

CSP allows unsafe inline scripts/styles
CSP uses wildcard sources
missing Permissions Policy

Header values

referrer-policy: strict-origin-when-cross-origin
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
content-security-policy: default-src 'self'; script-src 'self' blob: 'unsafe-eval' 'unsafe-inline' https://*.consentmanager.net https://*.matomo.cloud ; connect-src 'self' https://*.matomo.cloud https://*.sitecorecloud.io https://*.consentmanager.net https://*.microsoft.com ; style-src 'self' 'unsafe-inline' https://*.sitecorecloud.io https://*.matomo.cloud ; img-src 'self' blob: data: https://*.consentmanager.net https://*.sitecorecloud.io https://*.vimeocdn.com https://*.matomo.cloud https://*.grunenthal.com https://*.wma.comb.es ; media-src 'self' https://*.sitecorecloud.io; frame-src 'self' https://*.vimeo.com https://*.consentmanager.net https://*.microsoft.com ; font-src 'self' blob: data: https://*.matomo.cloud https://*.microsoft.com ; object-src 'none'; base-uri 'self' https://*.matomo.cloud; form-action 'self'; frame-ancestors 'self' ; upgrade-insecure-requests;
strict-transport-security: max-age=63072000; includeSubDomains; preload