mcyclo.com
mcyclo.com
HTML metadata
Technology
- CDN
- Amazon CloudFront
Registration
- Registrar
- CSC Corporate Domains, Inc.
- Created
- 2021-12-10
- Expires
- 2026-12-10 203 days left
- Updated
- 2025-12-06
- Name servers
-
- ns01.basf.com
- ns02.basf.com
DNS records live
- NS
-
- ns01.basf.com
- ns02.basf.com
- TXT
-
g5f5k24m2l5v91s4zpym11ypcjn5xx01v=spf1 mx a -all
- Verified for
-
Certificate (current)
Amazon RSA 2048 M04
Expires in 174 days
HTTP security headers
- present
-
- strict-transport-security
- content-security-policy
- x-content-type-options
- referrer-policy
- findings
-
- CSP allows unsafe inline scripts/styles
- CSP uses wildcard sources
- missing frame protection
- missing Permissions Policy
Header values
- referrer-policy
strict-origin-when-cross-origin- x-content-type-options
nosniff- content-security-policy
child-src blob:; connect-src 'self' 'unsafe-inline' https:; default-src 'self'; font-src 'self' data: https://*.wcms.basf.com; frame-ancestors https://*.wcms.basf.com; frame-src https://* blob:; img-src 'self' data: https://*.basf.com https://assets.dcp-storefront.basf.com https://cdn.cookielaw.org https://collect.tealiumiq.com https://platform.b4u-cloud.de *.kampyle.com *.medallia.eu *.qualtrics.com *.facebook.com https://maps.gstatic.com/mapfiles/ https://maps.googleapis.com/maps/; media-src 'self' blob: https://*.wcms.basf.com; object-src 'none'; script-src 'wasm-unsafe-eval' 'unsafe-inline'; script-src-elem 'self' https: 'sha256-ttfnBjqp3Wtmn9FUPKkR3GLb0D3xMFCg7QcjYux8Y+o='; style-src 'unsafe-inline' 'self'; style-src-elem 'self' 'unsafe-inline' https://*.wcms.basf.com https://player.youku.com https://platform.b4u-cloud.de https://privacyportal-eu-cdn.onetrust.com; worker-src blob:- strict-transport-security
max-age=63072000; includeSubDomains; preload