muirhead.co.uk

HTML metadata

Title

The complete cabin seat solution | Muirhead.co.uk

Description

Explore Muirhead’s sustainable leather for upholstery car trimmings and interiors. Durable, low-carbon materials trusted for aviation seating and premium design

Language

en

Canonical

https://www.muirhead.co.uk/

Translations

en

Open Graph

url: https://www.muirhead.co.uk/
title: The complete cabin seat solution | Muirhead.co.uk
site name: Muirhead.co.uk
description: Explore Muirhead’s sustainable leather for upholstery car trimmings and interiors. Durable, low-carbon materials trusted for aviation seating and premium design

Technology

Server: Unknown

Analytics

Google Tag Manager

Social widgets

Vimeo Embed

Third-party hosts loaded (4)

player.vimeo.com×2
secure.smart-enterprise-52.com×2
cc.cdn.civiccomputing.com×1
www.googletagmanager.com×1

Social

Contact

Email

Phone

Registration

Registrar

Fasthosts Internet Ltd

Created

1996-10-22

Expires

2026-10-22 154 days left

Updated

2025-09-22

Name servers

ns1.livedns.co.uk.
ns2.livedns.co.uk.
ns3.livedns.co.uk.

DNS records live

NS

ns1.livedns.co.uk
ns2.livedns.co.uk
ns3.livedns.co.uk

MX

0 muirhead-co-uk.mail.protection.outlook.com

TXT

2024090907270126wrkaqjpd6rhjmwb6xy6cbyw9ktplzbgnzkc6l8s7fpvf41f3
_spf.eu.messagegears.net

Email authentication strong

SPF

v=spf1 ip4:86.188.238.162 include:spf.protection.outlook.com include:_spf_euwest1.prod.hydra.sophos.com include:spf.uk.exclaimer.net include:customers.clickdimensions.com ~all

softfail (~all)

DMARC

v=DMARC1; p=quarantine; pct=100; rua=mailto:email.security@scottishleathergroup.com

policy: quarantine

DKIM

selector1: v=DKIM1; k=rsa; p=MIGfMA0GCSqGSIb3DQEBAQUAA4GNADCBiQKBgQCe4EV4g2BGPpm7PTynbd4JTHCnOg2NxyadhfDBKqMQg2UZrHuot5SnNHtMBDmjGUWBcVUnjxoDRP/ZHDKeZn…
selector2: v=DKIM1; k=rsa; p=MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAonoEHjiVIeZJPTKkO2tTudIo5tWqdFRO5XtoDQ6ujJ+thrtVLXcy/HoR2xyAfOi44mdeu2/WFxswg3…

selectors probed

Certificate (current)

R13

from 2026-03-30 to 2026-06-28

Expires in 38 days

Full certificate history on crt.sh ↗

HTTP security headers

Header hygiene 80/100 Checked live page: https://www.muirhead.co.uk/

present

strict-transport-security
content-security-policy
x-frame-options
x-content-type-options

findings

CSP allows unsafe inline scripts/styles
CSP uses wildcard sources
missing Referrer Policy
missing Permissions Policy

Header values

x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
content-security-policy: script-src *.bugherd.com *.clarity.ms *.clickdimensions.com *.crazyegg.com *.demandbase.com *.google.com *.googleapis.com *.googletagmanager.com *.gstatic.com *.hotjar.com *.licdn.com *.oktopost.com *.smart-enterprise-52.com *.usbrowserspeed.com *.vimeo.com *.youtube.com apikeys.civiccomputing.com cc.cdn.civiccomputing.com okt.to player.vimeo.com/api/player.js 'self' 'unsafe-inline';frame-src *.bugherd.com *.google.com *.gstatic.com *.vimeo.com *.youtube.com apikeys.civiccomputing.com cc.cdn.civiccomputing.com player.vimeo.com 'self' www.youtube.com;img-src *.bugherd.com *.googleapis.com *.googletagmanager.com *.gstatic.com *.linkedin.com data: 'self';connect-src *.bugherd.com *.bugsnag.com *.clarity.ms *.company-target.com *.crazyegg.com *.demandbase.com *.google-analytics.com *.googleapis.com *.hotjar.io *.liadm.com *.linkedin.com *.pusher.com *.vimeo.com *.youtube.com apikeys.civiccomputing.com cc.cdn.civiccomputing.com 'self' wss://ws.hotjar.com wss://ws-mt1.pusher.com/;style-src *
strict-transport-security: max-age=31536000

Links to (6)

Linked from (1)

scottishleathergroup.com×2