mundo-r.com
HTML metadata
Technology
- Server
- istio-envoy
- CMS
- Next.js
- Fonts
-
- Google Fonts
Third-party hosts loaded (3)
- eshop.prod.k8s.masmovil.com×12
- fonts.googleapis.com×2
- fonts.gstatic.com×1
Social
Contact
- Phone
- Address
- Paseo del Club Deportivo 1, Parque Empresarial La Finca, Edificio 8, Pozuelo de Alarcón (Madrid), 28223, Madrid, Madrid, España
Registration
- Registrar
- Interdominios, Inc.
- Created
- 1999-04-09
- Expires
- 2027-04-09 324 days left
- Updated
- 2026-03-26
- Name servers
-
- ns-cloud-c1.googledomains.com
- ns-cloud-c2.googledomains.com
- ns-cloud-c3.googledomains.com
- ns-cloud-c4.googledomains.com
DNS records live
- NS
-
- ns-cloud-c1.googledomains.com
- ns-cloud-c2.googledomains.com
- ns-cloud-c3.googledomains.com
- ns-cloud-c4.googledomains.com
- MX
-
- 10 mxl.mundo-r.com
- TXT
-
Show 6 TXT records
dtm-domain-verification=xUu8hN_VP2hMeBAJ1OC1zEeawJpZzbCRnTthPjLNESYglobalsign-domain-verification=0DBD6F71DC0E4D8B123C8F253600F665globalsign-domain-verification=E95DF849BC3D75C0C2F9CE447137A19Dglobalsign-domain-verification=31E6E91C685E1504BA2C9CACF175B172google-site-verification=oxwlcrqwxa8lvpnj50j4tvqxythkbynr1bghml5lauuj3lxxpjfv4ykbldl3yf0lh313t794kz4
Email authentication partial
- SPF
-
v=spf1 mx include:spf.hornetsecurity.com ip4:212.51.32.0/23 ip4:213.60.252.118 ip4:212.142.145.30 ip4:212.142.145.31 ip4:212.142.145.32 ip4:212.142.145.37 ip4:213.60.113.180 ip4:212.142.144.0/27 ip4:217.168.2.92 ip4:212.51.43.219 -allstrict (-all) - DMARC
-
v=dmarc1; p=none; rua=mailto:informes@mundo-r.compolicy: none (monitoring only) - DKIM
-
- s1:
k=rsa; t=s; p=MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA27NxQ9hWUO+FLASBnQ6YU3HzkgH0QGrRF3Ho1g9OT92CAY0f/QS8TF8nBZ76E82BPytqV2RSmAkJRd+m/2… - s2:
k=rsa; t=s; p=MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAvUq+IwAoL+SlBDgCYn+QbfAqjAFy3v4RcmWNFX/oVP8pCgvh87unv/uAYo8zXNAuibzO0E78pnWlSiJPBp…
selectors probed - s1:
Certificate (current)
WR3
Expires in 24 days
HTTP security headers
- present
-
- strict-transport-security
- content-security-policy
- x-frame-options
- x-content-type-options
- permissions-policy
- findings
-
- CSP allows unsafe inline scripts/styles
- CSP uses wildcard sources
- missing Referrer Policy
Header values
- x-frame-options
SAMEORIGIN- permissions-policy
geolocation=(self "https://mundo-r.com" "https://www.mundo-r.com" "https://mundo-r.es" "https://www.mundo-r.es"), microphone=(),- x-content-type-options
nosniff- content-security-policy
base-uri 'self'; block-all-mixed-content; upgrade-insecure-requests; child-src blob:; default-src 'self'; script-src 'self' 'unsafe-eval' 'unsafe-inline' blob: *.adform.net *.ads-twitter.com *.ads.linkedin.com *.amazon-adsystem.com *.amazonaws.com *.analytics.google.com *.aptica.es *.bankofafrica.ma *.bing.com *.capitalone.com *.clarity.ms *.cloudflare.com *.co-buying.com *.configcat.com *.contentful.com *.cookielaw.com *.cookielaw.org *.creativecdn.com *.ctfassets.net *.conversionsapigateway.com *.doubleclick.net *.facebook.com *.facebook.net *.google-analytics.com *.google.com *.google.es *.googleadservices.com *.googleapis.com *.googleoptimize.com *.googlesyndication.com *.googletagmanager.com *.gstatic.com *.hotjar.com *.hotjar.io *.inconcertcc.com *.krxd.com *.krxd.net *.licdn.com *.linkedin.oribi.io *.logalty.com *.logalty.es *.masmovil.com *.mixpanel.com *.mundo-r.com *.onetrust.com *.openstreetmap.org *.optimizely.com *.orsac.net *.outbrain.com *.pinimg.com *.pinterest.com *.p- strict-transport-security
max-age=15552000; includeSubDomains
Links to (9)
- apple.com×2
- europa.eu×2
- facebook.com×2
- google.com×2
- instagram.com×2
- integrityline.com×2
- tiktok.com×2
- x.com×2
- youtube.com×2