mediterana.de

.de crawl

First seen 2026-04-23 · Last seen 2026-05-17 · ok HTTP/1.1 200 12408 ms crawled 2026-05-17

DE · 144.76.52.40 · AS24940 Hetzner Online GmbH

Reputation 89/100 weak security headers dmarc monitor-only

sector health type homepage

HTML metadata

Title: Mediterana – Das Wellness & Health Retreat
Description: Entspannen Sie in der Sauna- & Thermenwelt des Mediterana und genießen Sie Wellness in Bergisch Gladbach bei Köln.
Language: de-de
Generator: TYPO3 CMS
Canonical: https://www.mediterana.de/

Open Graph

title: Willkommen im Mediterana – das Wellness & Health Retreat
image:url: https://www.mediterana.de/fileadmin/_processed_/8/a/csm_mediterana-PLATZHALTER-og-image_94a7cc4acd.jpg
description: Entspanne Dich in der Sauna- & Thermenwelt des Mediterana und genießen Sie mediterrane Wellness in Bergisch Gladbach bei Köln.

Technology

Server: nginx
CMS: Gatsby

Cookie consent

Cookiebot

Third-party hosts loaded (1)

consent.cookiebot.com×1

Social

Contact

Phone

+49022042020

Registration

Updated

2026-02-08

Name servers

ns1.s-t-dns.com.
ns2.s-t-dns.com.

DNS records live

NS

ns1.s-t-dns.com
ns2.s-t-dns.com

MX

10 mediterana-de.mail.protection.outlook.com

TXT

MS=ms44466267
google-site-verification=RbMBeA1z2N8oA0bi03-lHCCqBN9LnlbXSGzOCXOLfiQ
brevo-code:d42cef66365c35cd6d17bebf637b31e3

Email authentication partial

SPF: v=spf1 mx ip4:85.93.89.84 ip4:144.76.52.40 ip4:87.234.241.109 include:spf.protection.outlook.com include:spf-de.emailsignatures365.com include:shops.shopify.com include:spf.sendinblue.com include:mailgun.org -all
strict (-all)
DMARC: v=DMARC1; p=none; rua=mailto:rua@dmarc.brevo.com
policy: none (monitoring only)
DKIM: no key found at common selectors

Certificate (current)

R13

from 2026-05-09 to 2026-08-07

Expires in 79 days

Full certificate history on crt.sh ↗

HTTP security headers

Header hygiene 40/100 Checked live page: https://www.mediterana.de/

present

content-security-policy

findings

missing HSTS
CSP allows unsafe inline scripts/styles
CSP uses wildcard sources
missing frame protection
missing content type protection
missing Referrer Policy
missing Permissions Policy

Header values

content-security-policy: default-src 'self'; script-src 'self' 'nonce-Ejj1ZwIm2iARUsUHqbW6kbsO9a7_RreZDLNVoiUlcVZNFmzXy7wMIA' 'strict-dynamic' https://www.googletagmanager.com https://www.google-analytics.com https://consent.cookiebot.com https://consentcdn.cookiebot.com https://*.cookiebot.com *.mediterana.sparkle.plus https://secure.pay1.de https://sibforms.com 'report-sample'; style-src-attr 'unsafe-inline' 'report-sample'; img-src 'self' data: *.ytimg.com *.vimeocdn.com https://imgsct.cookiebot.com https://www.google.es https://www.googletagmanager.com https://googleads.g.doubleclick.net https://www.googleadservices.com https://widgets.trustedshops.com https://www.google.be https://www.google.cz https://www.google.ro *.mediterana.sparkle.plus https://www.google.com https://www.facebook.com https://www.google.de https://cdn.pay1.de; base-uri 'self'; frame-src 'self' *.youtube-nocookie.com *.youtube.com *.vimeo.com https://newsletter.mediterana.de/ https://consentcdn.cookiebot.com https://www.googletagmanage

Links to (7)

Linked from (1)

koenigsforst-marathon.de×2