indexo.dev

iopole.com

.com crawl

First seen 2026-04-28 · Last seen 2026-05-18 · ok HTTP/1.1 200 5291 ms crawled 2026-05-05

FR · 46.105.33.168 · AS16276 OVH SAS

Reputation 95/100 weak security headers

sector tech type homepage

HTML metadata

Title
IOPOLE : Facturation électronique par API
Description
Intégrez simplement la facturation électronique via API 🔗 conforme 2026. Sandbox gratuite, PAS & Peppol inclus. Iopole gère le réglementaire.
Language
fr

Open Graph

title
IOPOLE : Facturation électronique par API
description
Intégrez simplement la facturation électronique via API 🔗 conforme 2026. Sandbox gratuite, PAS & Peppol inclus. Iopole gère le réglementaire.

Technology

Server
nginx
CMS
Next.js
Analytics
  • Google Tag Manager

Third-party hosts loaded (1)

  • www.googletagmanager.com×1

Registration

Registrar
OVH sas
Created
2022-07-25
Expires
2026-07-25 67 days left
Updated
2025-07-26
Name servers
  • dns200.anycast.me
  • ns200.anycast.me

DNS records live

NS
  • dns200.anycast.me
  • ns200.anycast.me
MX
  • 10 iopole-com.mail.protection.outlook.com
TXT
Show 8 TXT records
  • Certeurope=O4ueBolR118jsQg1ATlS4mB1vdNmg4
  • MS=ms94515684-d933-4885-bfa6-666db392fac5
  • atlassian-domain-verification=Ox77L8iqEHfqXkTPHlyPWRLwCbMFpkeT0Qs0wmFFvavwczXmxzffvmRj4PgHI94R
  • 1|www.iopole.com
  • google-site-verification=U_MMbLYeBSGtKRNNfD7tPiKqRXciXoHA91FaUJNURVM
  • v=spf1 include:spf.protection.outlook.com include:spf.mailjet.com -all
  • canva-site-verification=8lETj_tIrRmsbJOR2NOZSA
  • anthropic-domain-verification-dr5zr1=C0P8tMtbEPB03W2d6wwkveuYq

Certificate (current)

E7
from 2026-04-08 to 2026-07-07
Expires in 49 days

Full certificate history on crt.sh ↗

HTTP security headers

Header hygiene 40/100 Checked live page: https://www.iopole.com/

present
  • content-security-policy
findings
  • missing HSTS
  • CSP allows unsafe inline scripts/styles
  • CSP uses wildcard sources
  • missing frame protection
  • missing content type protection
  • missing Referrer Policy
  • missing Permissions Policy
Header values
content-security-policy
default-src 'self' blob:; frame-src 'self' https://js-eu1.hsforms.net https://forms.hsforms.com https://forms-eu1.hsforms.com https://*.iopole.com http://*.iopole.com https://www.youtube.com https://www.googletagmanager.com https://www.linkedin.com; script-src 'self' 'unsafe-inline' 'unsafe-eval' https://js.hs-scripts.com https://js-eu1.hs-analytics.net https://forms-eu1.hscollectedforms.net https://js-eu1.hs-banner.com https://js-eu1.hscollectedforms.net https://forms-eu1.hsforms.com https://js-eu1.hs-scripts.com https://js-eu1.hsforms.net https://ajax.googleapis.com https://www.google-analytics.com https://www.googletagmanager.com https://snap.licdn.com https://js-eu1.hsadspixel.net/fb.js; worker-src blob:; img-src * 'self' blob: data: https://www.google-analytics.com; style-src 'self' 'unsafe-inline' https://fonts.googleapis.com https://use.fontawesome.com; font-src 'self' https://themes.googleusercontent.com https://fonts.gstatic.com https://use.fontawesome.com data:; object-src 'n

Links to (14)

Linked from (2)