indexo.dev

jinjer-merch.com

.com crawl

First seen 2026-05-04 · Last seen 2026-05-11 · ok HTTP/1.1 200 4943 ms crawled 2026-05-11

DE · 185.88.213.216 · AS47447 23M GmbH

Reputation 89/100 weak security headers dmarc monitor-only

sector entertainment type ecommerce

HTML metadata

Title
Jinjer Merch Shop
Description
Merch | Music | Accessories JINJER - OFFICIAL SHOP Exclusive merch, worldwide shipping, short delivery times, secure payment.
Language
en

Technology

Server
nginx
CMS
Gatsby
Fonts
  • Google Fonts

Third-party hosts loaded (3)

  • fonts.googleapis.com×4
  • chimpstatic.com×1
  • www.facebook.com×1

Social

Registration

Registrar
IONOS SE
Created
2021-06-01
Expires
2026-06-01 13 days left
Updated
2025-06-02
Name servers
  • ns1030.ui-dns.de
  • ns1040.ui-dns.biz
  • ns1058.ui-dns.org
  • ns1087.ui-dns.com

DNS records live

NS
  • ns1030.ui-dns.de
  • ns1040.ui-dns.biz
  • ns1058.ui-dns.org
  • ns1087.ui-dns.com
MX
  • 10 mx00.ionos.de
  • 10 mx01.ionos.de
TXT
  • google-site-verification=fdNRMy8l9x1jPJNt875Q6F4wjuodggdhgf7wPGkjjxs

Email authentication partial

SPF
v=spf1 a mx include:_spf-eu.ionos.com ~all
softfail (~all)
DMARC
v=DMARC1; p=none;
policy: none (monitoring only)
DKIM
  • k2: v=DKIM1; k=rsa; p=MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAv2aC2KjGKLOwTweBY5A9RpjsxaBXR9r7OAU6U8/zn92ivImI75naUujWbItRI/QmL1jy5PWGqLwoUA…
selectors probed

Certificate (current)

E8
from 2026-04-09 to 2026-07-08
Expires in 50 days

Full certificate history on crt.sh ↗

HTTP security headers

Header hygiene 45/100 Checked live page: https://jinjer-merch.com/

present
  • content-security-policy-report-only
  • x-frame-options
  • x-content-type-options
findings
  • missing HSTS
  • missing Content Security Policy
  • weak frame protection
  • missing Referrer Policy
  • missing Permissions Policy
Header values
x-frame-options
SAMEORIGIN, SAMEORIGIN
x-content-type-options
nosniff
content-security-policy-report-only
font-src data: 'self' 'unsafe-inline'; form-action geostag.cardinalcommerce.com geo.cardinalcommerce.com 1eafstag.cardinalcommerce.com 1eaf.cardinalcommerce.com centinelapistag.cardinalcommerce.com centinelapi.cardinalcommerce.com pilot-payflowlink.paypal.com www.paypal.com www.sandbox.paypal.com *.cardinalcommerce.com *.paypal.com 3ds-secure.cardcomplete.com www.clicksafe.lloydstsb.com pay.activa-card.com *.wirecard.com acs.sia.eu *.touchtechpayments.com www.securesuite.co.uk rsa3dsauth.com *.monzo.com *.arcot.com *.wlp-acs.com 'self' 'unsafe-inline'; frame-ancestors 'self'; frame-src fast.amc.demdex.net *.adobe.com bid.g.doubleclick.net *.youtube.com *.youtube-nocookie.com geostag.cardinalcommerce.com geo.cardinalcommerce.com 1eafstag.cardinalcommerce.com 1eaf.cardinalcommerce.com centinelapistag.cardinalcommerce.com centinelapi.cardinalcommerce.com www.paypal.com www.sandbox.paypal.com pilot-payflowlink.paypal.com player.vimeo.com https://www.google.com/recaptcha/ js.mollie.com c.pa

Links to (8)

Linked from (2)