indexo.dev

hbfuller.com

.com crawl

First seen 2026-04-14 · Last seen 2026-05-16 · ok HTTP/1.1 200 738 ms crawled 2026-05-13

US · 104.18.3.186 · AS13335 Cloudflare, Inc.

Reputation 95/100 weak security headers

sector manufacturing type homepage

HTML metadata

Title
H.B. Fuller: Connecting what matters | Innovative Adhesives & Sealants | Adhesives manufacturing company
Description
H.B. Fuller leverages global adhesive manufacturing to innovate and share expertise, ensuring tailored solutions meet regional demands.
Language
en
Canonical
https://www.hbfuller.com/en
Translations
  • de
  • en
  • es
  • fr
  • pt-br
  • zh

Open Graph

url
https://www.hbfuller.com/en/
title
H.B. Fuller: Connecting what matters | Innovative Adhesives & Sealants

Technology

CDN
Cloudflare
Analytics
  • Cloudflare Insights
Cookie consent
  • Iubenda

Third-party hosts loaded (5)

  • cdn.iubenda.com×2
  • cdn.jsdelivr.net×1
  • cs.iubenda.com×1
  • kit.fontawesome.com×1
  • static.cloudflareinsights.com×1

Social

Contact

Address
1200 Willow Lake Blvd, 55110, Saint Paul, Minnesota, US

Registration

Registrar
Network Solutions, LLC
Created
1994-02-01
Expires
2030-02-02 1354 days left
Updated
2024-12-05
Name servers
  • elsa.ns.cloudflare.com
  • kenneth.ns.cloudflare.com

DNS records live

NS
  • elsa.ns.cloudflare.com
  • kenneth.ns.cloudflare.com
MX
  • 0 mx1.hc2608-18.iphmx.com
  • 0 mx2.hc2608-18.iphmx.com
TXT
Show 9 TXT records
  • docker-verification=629d4a58-ee73-415e-966f-7c8113a1a000
  • google-site-verification=90MpaNUDHstHv7rgdx7G6U09zZtqjeFczFZJ1Ro_BG8
  • google-site-verification=BCfVJAiGOAl7ZcbnWFSA8kTa2rRLnehTN9A9dnq38Zk
  • onx=86110d25-b335-429a-ab27-ec582fc83931
  • _globalsign-domain-verification=HJE5-L2wnKjuIDgLwRR78fuBYTQwBp3OkfLBfjFPl_
  • adobe-sign-verification=230b59e3373367dd2c3437b3c81a84ef
  • anthropic-domain-verification-8w30b6=cCrmpEwZCDFvEm62HflrV1B42
  • atlassian-domain-verification=sY3qSE386py/t4biZQVaaLcSIApNeQTyp8tPm/lpXAhpF6zBCdokGdmKFigVk12Y
  • cisco-ci-domain-verification=65a15af4d6a31c22244ce52d1293f2f6e1bb4b13a7553ccc2b7fb136d0341600

Email authentication strong

SPF
v=spf1 mx a:mail.hbfuller.com ip4:35.80.141.6 ip4:44.229.121.55 ip4:148.59.100.16/28 include:spf.protection.outlook.com include:_spf.salesforce.com include:spf.constantcontact.com include:servers.mcsv.net a:mail.benefitsolver.com include:sendgrid.net -all
strict (-all)
DMARC
v=DMARC1;p=quarantine;pct=100;rua=mailto:c2ae4b94fdfd493db7c6e5a72c5ee619@dmarc-reports.cloudflare.net,mailto:wetk0cfi@ag.dmarcian.com;ruf=mailto:wetk0cfi@fr.dmarcian.com
policy: quarantine
DKIM
Show 7 DKIM selectors
  • selector1: v=DKIM1; k=rsa; p=MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAuesSvg+F/vG6t5qr664TBwpbzqz3m+Av100A5y+OUF8SxdFTwlMS6AaPSlWUeIEswaTrQAt19MK24l…
  • selector2: v=DKIM1; k=rsa; p=MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAtWBVyG75h8k1oL4bYBUfAMEKUzJovj50cMkRIXEJa3Nps129h1tL3JqGOQJkWXc+O4E+N0eydPIUBt…
  • k1: k=rsa; p=MIGfMA0GCSqGSIb3DQEBAQUAA4GNADCBiQKBgQDbNrX2cY/GUKIFx2G/1I00ftdAj713WP9AQ1xir85i89sA2guU0ta4UX1Xzm06XIU6iBP41VwmPwBGRNofhBVR+e6WHUo…
  • dkim: v=DKIM1;t=s;k=rsa;p=MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA5c0JU45pjXLPr/o5azjfE+tbpl6u6j1g3Lvox/o1WJOWzbHkP2BRVAvcAxTWiqFzbiMk56EzVFSS…
  • s1: k=rsa; t=s; p=MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAq6XpLv4XHB2Bu9qFB+EEW7/H7eYpKPq9qHyy4tJA5Bcoy0EIZ+mrKFgOAf3XHvedoPGGBP74iNCiZ/zMZk…
  • s2: k=rsa; t=s; p=MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAuZtJNrf0vKODHzgvILYe/cw3Z0FxBavHDvuoevRsOFvTL6lRSji7xxxNKNjnIDVnSIPqC+kEG4hA1pKV85…
  • smtpapi: k=rsa; t=s; p=MIGfMA0GCSqGSIb3DQEBAQUAA4GNADCBiQKBgQDPtW5iwpXVPiH5FzJ7Nrl8USzuY9zqqzjE0D1r04xDN6qwziDnmgcFNNfMewVKN2D1O+2J9N14hRprzByFwfQW76…
selectors probed

Certificate (current)

GlobalSign GCC R3 EV TLS CA 2025
from 2026-01-23 to 2027-02-24
Expires in 281 days

Full certificate history on crt.sh ↗

HTTP security headers

Header hygiene 40/100 Checked live page: https://www.hbfuller.com/en

present
  • content-security-policy
findings
  • missing HSTS
  • CSP allows unsafe inline scripts/styles
  • CSP uses wildcard sources
  • missing frame protection
  • missing content type protection
  • missing Referrer Policy
  • missing Permissions Policy
Header values
content-security-policy
default-src 'self'; script-src 'self' data: blob: 'unsafe-inline' 'unsafe-eval' *.iubenda.com *.google-analytics.com *.hotjar.com snap.licdn.com static.cloud.coveo.com www.clarity.ms scripts.clarity.ms www.gstatic.com www.recaptcha.net *.googletagmanager.com ajax.cloudflare.com static.cloudflareinsights.com kit.fontawesome.com cdn.jsdelivr.net www.youtube.com www.youtube-nocookie.com ka-p.fontawesome.com bat.bing.com siteintercept.qualtrics.com maps.googleapis.com play.google.com cdnjs.cloudflare.com ajax.googleapis.com *.coveo.com *.azure.com *.qualtrics.com *.applicationinsights.io *.hbfuller.com *.clickagy.com *.adsrvr.org *.zi-scripts.com https://googleads.g.doubleclick.net; style-src 'self' 'unsafe-inline' fonts.googleapis.com *.fontawesome.com static.cloud.coveo.com www.gstatic.com *.coveo.com cdn.iubenda.com cdnjs.cloudflare.com www.g

Links to (6)

Linked from (6)