hegemann-kwh.de
hegemann-kwh.de
HTML metadata
Technology
- CMS
- Joomla
- jQuery
- 1.11.2 known XSS (<3.5)
Third-party hosts loaded (2)
- maxcdn.bootstrapcdn.com×2
- ajax.googleapis.com×1
Social
Contact
- Phone
Registration
- Updated
- 2018-09-07
- Name servers
-
- ns1031.ui-dns.biz.
- ns1031.ui-dns.com.
- ns1031.ui-dns.de.
- ns1031.ui-dns.org.
DNS records live
- NS
-
- ns1031.ui-dns.biz
- ns1031.ui-dns.com
- ns1031.ui-dns.de
- ns1031.ui-dns.org
- MX
-
- 0 hegemannkwh-de02b.mail.protection.outlook.com
- TXT
-
@ IN A 104.40.129.89crflm2k7kpfe2gn8l7o161j35jwww IN CNAME gaertnereihegemann.azurewebsites.net.
- Verified for
-
- Microsoft 365
Email authentication weak
- SPF
-
v=spf1 include:spf.protection.outlook.com -allstrict (-all) - DMARC
- not published
- DKIM
- no key found at common selectors
Certificate (current)
R12
Expires in 56 days
HTTP security headers
- present
-
- strict-transport-security
- content-security-policy
- x-frame-options
- x-content-type-options
- referrer-policy
- permissions-policy
- findings
-
- CSP allows unsafe inline scripts/styles
- CSP uses wildcard sources
Header values
- referrer-policy
strict-origin- x-frame-options
SAMEORIGIN- permissions-policy
autoplay=*, geolocation=*- x-content-type-options
nosniff- content-security-policy
default-src * data: blob: 'unsafe-inline' 'unsafe-hashes' 'unsafe-eval'; frame-ancestors 'self' http://localhost:4200 https://cloudplayer.green-solutions.com;- strict-transport-security
max-age=31536000
Links to (3)
- youtube.com×1
- google.com×1
- europa.eu×1
Linked from (1)
Use this data via API
Everything on this page for hegemann-kwh.de is available as JSON from the indexo.dev REST & MCP API.
curl "https://indexo.dev/api/v1/domains/hegemann-kwh.de" \ -H "X-API-Key: idx_..."