midoco.de

HTML metadata

Title

MIDOCO | Mid- & Backoffice Lösungen / ERP Reisebürosoftware

Description

Midoco Mid- & Backoffice / ERP Reisebürosoftware vereinfacht und automatisiert Arbeitsabläufe in Reiseunternehmen

Language

de

Generator

HubSpot

Canonical

https://www.midoco.de

Translations

de
en

Open Graph

url: https://www.midoco.de
title: MIDOCO | Mid- & Backoffice Lösungen / ERP Reisebürosoftware
description: Midoco Mid- & Backoffice / ERP Reisebürosoftware vereinfacht und automatisiert Arbeitsabläufe in Reiseunternehmen

Technology

CDN: Cloudflare

Analytics

Google Tag Manager

Third-party hosts loaded (2)

cdnjs.cloudflare.com×2
www.googletagmanager.com×2

Social

Contact

Email

welcome@midoco.de

Phone

+49 2103 2874

Registration

Updated

2020-12-17

Name servers

ns05.domaincontrol.com.
ns06.domaincontrol.com.

DNS records live

NS

ns05.domaincontrol.com
ns06.domaincontrol.com

MX

50 midoco-de.mail.protection.outlook.com

TXT

MS=ms91297844
google-site-verification=lruQf6NzKyoIfN72WJKKPqqG-6u-jPMu8ZvRFNCHhsM

Email authentication strong

SPF

v=spf1 include:spf.protection.outlook.com include:4472260.spf06.hubspotemail.net -all

strict (-all)

DMARC

v=DMARC1; p=quarantine; sp=quarantine; rua=mailto:midocodmarc-d@dmarc.report-uri.com;

policy: quarantine · sp=quarantine

DKIM

selector1: v=DKIM1; k=rsa; p=MIGfMA0GCSqGSIb3DQEBAQUAA4GNADCBiQKBgQDeKKZHQyPkV8XG8VJpC1myU8pQUsvp9WkYPmaN9db6hOgRycy+GOKjvYBFpruHGv0+4tZDuLEZrmW5PCX+Ak…
smtpapi: k=rsa; t=s; p=MIGfMA0GCSqGSIb3DQEBAQUAA4GNADCBiQKBgQDPtW5iwpXVPiH5FzJ7Nrl8USzuY9zqqzjE0D1r04xDN6qwziDnmgcFNNfMewVKN2D1O+2J9N14hRprzByFwfQW76…

selectors probed

Certificate (current)

WE1

from 2026-03-09 to 2026-06-07

Expires in 19 days

Full certificate history on crt.sh ↗

HTTP security headers

Header hygiene 80/100 Checked live page: https://www.midoco.de/

present

strict-transport-security
content-security-policy
x-frame-options
referrer-policy
permissions-policy

findings

CSP allows unsafe inline scripts/styles
CSP uses wildcard sources
missing content type protection

Header values

referrer-policy: strict-origin-when-cross-origin
x-frame-options: SAMEORIGIN
permissions-policy: true
content-security-policy: default-src 'self'; base-uri 'self'; object-src 'none'; frame-ancestors 'self'; upgrade-insecure-requests; script-src 'self' https: 'unsafe-inline' 'unsafe-eval' cdn2.hubspot.net static.hsappstatic.net js.hs-scripts.com js.hs-analytics.net js.hscollectedforms.net js.hs-banner.com *.hsforms.com *.hsforms.net *.hubspot.com *.hubspot.net *.hsadspixel.net www.googletagmanager.com www.google-analytics.com www.google.com www.gstatic.com www.recaptcha.net player.vimeo.com app.powerbi.com *.powerbi.com *.analysis.windows.net *.hscta.net *.hs-sites.com; connect-src 'self' https: *.hubspot.com *.hubspot.net *.hsforms.com *.hsforms.net *.hs-analytics.net *.hs-scripts.com *.hscollectedforms.net *.hs-banner.com *.hsadspixel.net *.hsappstatic.net www.google-analytics.com www.googletagmanager.com www.google.com www.recaptcha.net www.gstatic.com player.vimeo.com *.vimeocdn.com app.powerbi.com *.powerbi.com *.analysis.windows.net *.hscta.net *.hs-sites.com; img-src 'self' https: data: blob: *.hubspot.c
strict-transport-security: max-age=31536000; includeSubDomains; preload

Links to (5)

Linked from (2)

igztk.com×2
chain4travel.com×2