interline-products.nl

HTML metadata

Technology

Server

Apache

CMS

Gatsby

jQuery

1.7.1 known XSS (<3.5)

Stack

PHP

Analytics

• Google Tag Manager

Third-party hosts loaded (2)

• www.googletagmanager.com×2
• cdn1.crossretail.nl×1

Social

• facebook
• youtube
• linkedin
• instagram

Contact

Email

• info@interline-products.nl

Phone

• 0900-0401600
• 0904-82045
• 009893684

DNS records live

NS

• xns1.i-aspect-infra.nl
• xns2.i-aspect-infra.nl

MX

• 0 interlineproducts-nl02c.mail.protection.outlook.com

Verified for

• Google
• Microsoft 365

Email authentication weak

SPF

v=spf1 include:spf.protection.outlook.com include:spf.crossretail.nl include:spf.eu.signature365.net include:spf.transsmart.com include:spf.afas.online ip4:94.124.141.128/25 ip4:5.39.185.32/29 -all

strict (-all)

DMARC

not published

DKIM

• default: v=DKIM1; k=rsa; p=MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAvJjWG3e+AYl61JsDRVx8JH1tCsjrMfaVeRV5LyCgq9pVjNWC28Sfbw6swNpd1JjKwm4QUUIUSKLcog…

selectors probed

Certificate (current)

Full certificate history on crt.sh ↗

HTTP security headers

Header hygiene 65/100 Checked live page: https://interline-products.nl/

present

• strict-transport-security
• content-security-policy
• x-frame-options

findings

• short HSTS max-age
• CSP allows unsafe inline scripts/styles
• CSP uses wildcard sources
• missing content type protection
• missing Referrer Policy
• missing Permissions Policy

Links to (7)

• youtube.com×1
• linkedin.com×1
• interline-products.de×1
• interline-products.com×1
• instagram.com×1
• i-aspect.com×1
• facebook.com×1

Linked from (1)

• crossretail.nl×1