indexo.dev

heightswellnessretreat.com

.com crawl

First seen 2026-04-28 · Last seen 2026-05-12 · ok HTTP/1.1 200 5664 ms crawled 2026-05-06

US · 52.11.37.152 · AS16509 Amazon.com, Inc.

Reputation 100/100

sector health type homepage

HTML metadata

Title
Massage, Skincare, and Wellness | Heights Wellness Retreat
Description
Take yourself to new heights by elevating your every day with Heights Wellness Retreat (formerly Massage Heights). Massage, skincare, and touchless therapies—all in one place.
Language
en
Canonical
https://www.heightswellnessretreat.com/

Open Graph

url
https://www.heightswellnessretreat.com/
title
Massage, Skincare, and Wellness | Heights Wellness Retreat
site name
Heights Wellness Retreat
description
Take yourself to new heights by elevating your every day with Heights Wellness Retreat. Massage, skincare, and touchless therapies—all in one place.

Technology

Fonts
  • Adobe Fonts

Third-party hosts loaded (4)

  • d36e1ax6e7eov0.cloudfront.net×20
  • use.typekit.net×2
  • analytics.scorpion.co×1
  • scorpionconnect.scorpion.co×1

Social

Contact

Phone
Address
13750 US Hwy 281 N, Suite 925, 78232, San Antonio, TX

Registration

Registrar
GoDaddy.com, LLC
Created
2024-08-29
Expires
2027-08-29 465 days left
Updated
2026-03-11
Name servers
  • ns05.domaincontrol.com
  • ns06.domaincontrol.com

DNS records live

NS
  • ns05.domaincontrol.com
  • ns06.domaincontrol.com
MX
  • 0 heightswellnessretreat-com.mail.protection.outlook.com
TXT
  • v=spf1 include:_spf.createsend.com include:spf.protection.outlook.com -all
Verified for
  • Apple

Certificate (current)

R13
from 2026-03-29 to 2026-06-27
Expires in 38 days

Full certificate history on crt.sh ↗

HTTP security headers

Header hygiene 85/100 Checked live page: https://www.heightswellnessretreat.com/

present
  • strict-transport-security
  • content-security-policy
  • x-frame-options
  • x-content-type-options
  • referrer-policy
findings
  • CSP allows unsafe inline scripts/styles
  • CSP uses wildcard sources
  • missing Permissions Policy
Header values
referrer-policy
no-referrer-when-downgrade
x-frame-options
SAMEORIGIN
x-content-type-options
nosniff
content-security-policy
default-src * blob: data: cid:; img-src * data: blob: cid: 'unsafe-inline'; media-src * data: blob:; script-src * data: blob: 'unsafe-inline' 'unsafe-eval'; style-src * blob: data: 'unsafe-inline'; style-src-elem * blob: data: 'unsafe-inline', font-src * data:
strict-transport-security
max-age=63072000; includeSubDomains; preload

Links to (8)

Linked from (2)