ladywine.co.uk
ladywine.co.uk
HTML metadata
Technology
- CDN
- Cloudflare
- jQuery
- 2.2.4 known XSS (<3.5)
- Analytics
-
- Google Tag Manager
Third-party hosts loaded (5)
- cdnjs.cloudflare.com×11
- cdn-cookieyes.com×1
- js-eu1.hs-scripts.com×1
- widget.trustpilot.com×1
- www.googletagmanager.com×1
Contact
- Phone
DNS records live
- NS
-
- kay.ns.cloudflare.com
- kip.ns.cloudflare.com
- MX
-
- 1 mail.rocket-media.net
- Verified for
-
Email authentication partial
- SPF
-
v=spf1 mx include:rocket-media.net include:mg.rocket-media.net -allstrict (-all) - DMARC
-
v=DMARC1;p=none;policy: none (monitoring only) - DKIM
-
- dkim:
v=DKIM1;k=rsa;t=s;s=email;p=MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAnBv3Qyzb9jruYCRhLYt0O8r75j8cHLqPagPADslUULW+V/zbHvOVWArwym2cJ4huYKA2…
selectors probed - dkim:
Certificate (current)
WE1
Expires in 87 days
HTTP security headers
- present
-
- strict-transport-security
- content-security-policy
- x-frame-options
- x-content-type-options
- referrer-policy
- permissions-policy
- findings
-
- CSP allows unsafe inline scripts/styles
- CSP uses wildcard sources
Header values
- referrer-policy
same-origin- x-frame-options
SAMEORIGIN- permissions-policy
geolocation=*- x-content-type-options
nosniff- content-security-policy
default-src *; style-src 'self' 'unsafe-inline' cdnjs.cloudflare.com fonts.googleapis.com; font-src 'self' cdnjs.cloudflare.com fonts.googleapis.com fonts.gstatic.com; script-src 'self' 'unsafe-inline' 'unsafe-eval' *.stripe.com *.hubspot.com cdnjs.cloudflare.com fonts.googleapis.com fonts.gstatic.com *.hscollectedforms.net forms-eu1.hsforms.com js-eu1.hs-analytics.net js-eu1.hs-banner.com js-eu1.hs-scripts.com js-eu1.usemessages.com *.hotjar.com static.hsappstatic.net widget.trustpilot.com merchant.revolut.com cdn-cookieyes.com www.googletagmanager.com;- strict-transport-security
max-age=31536000; includeSubDomains; preload