kucahemije.me

.me crawl

First seen 2026-04-22 · Last seen 2026-05-12 · ok HTTP/1.1 200 2689 ms crawled 2026-05-16

RS · 185.102.78.46 · AS198171 Webglobe, s.r.o.

Reputation 87/100 weak security headers no dmarc policy

Classifying

HTML metadata

Title: Kuća Hemije Drogerija | Ljubav je hemija
Language: en

Technology

Server: LiteSpeed

Analytics

Google Tag Manager

Fonts

Google Fonts

Third-party hosts loaded (5)

fonts.googleapis.com×3
www.googletagmanager.com×2
fonts.gstatic.com×1
kuca-hemije-drogerija.ck.page×1
www.facebook.com×1

Social

Contact

Phone

+382 20 281 177

DNS records live

NS

ns1.md-70.webhostbox.net
ns2.md-70.webhostbox.net

MX

100 us2.mx1.mailhostbox.com
100 us2.mx2.mailhostbox.com
100 us2.mx3.mailhostbox.com

Email authentication weak

SPF

v=spf1 redirect=_spf.mailhostbox.com

no all qualifier

DMARC

not published

DKIM

default: v=DKIM1; k=rsa; p=MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA1k91RJacqvjdcRLsGct2ibE1X4qcA0Pb6l5DRYPLK/xUvA5jfjnxCAPYFMDMkmsOXxRyYr3B+ur8IA…

selectors probed

Certificate (current)

R12

from 2026-03-16 to 2026-06-14

Expires in 26 days

Full certificate history on crt.sh ↗

HTTP security headers

Header hygiene 40/100 Checked live page: https://kucahemije.me/

present

content-security-policy

findings

missing HSTS
CSP allows unsafe inline scripts/styles
CSP uses wildcard sources
missing frame protection
missing content type protection
missing Referrer Policy
missing Permissions Policy

Header values

content-security-policy: default-src 'self'; script-src 'self' 'unsafe-inline' 'unsafe-eval' https://cdn.ckeditor.com https://ajax.googleapis.com https://maps.googleapis.com https://*.googleapis.com https://*.gstatic.com https://*.googletagmanager.com https://connect.facebook.net https://*.googleadservices.com https://*.doubleclick.net https://kuca-hemije-drogerija.ck.page https://kuca-hemije-drogerija.kit.com; style-src 'self' 'unsafe-inline' https://cdn.ckeditor.com https://fonts.googleapis.com https://*.ck.page; img-src 'self' data: blob: https://*.googleapis.com https://*.gstatic.com https://maps.gstatic.com https://*.google.com https://www.facebook.com https://*.google-analytics.com https://*.doubleclick.net https://*.google.me; font-src 'self' data: https://fonts.gstatic.com https://*.ck.page; connect-src 'self' https://*.googleapis.com https://*.gstatic.com https://*.google-analytics.com https://*.analytics.google.com https://*.doubleclick.net https://*.google.com https://api.convertkit.com ht

Links to (5)

Linked from (1)

micromedia.me×2