indexo.dev

mutuelleverte.com

.com crawl

First seen 2026-04-21 · Last seen 2026-05-15 · ok HTTP/1.1 200 4050 ms crawled 2026-05-15

FR · 87.98.187.73 · AS16276 OVH SAS

Reputation 92/100 no dmarc policy

Classifying

HTML metadata

Title
La Mutuelle Verte - Mutuelle santé et prévoyance
Description
La Mutuelle Verte vous propose des garanties santé et prévoyance adaptées à tous les profils et tous les budgets.
Language
fr-FR
Canonical
https://www.mutuelleverte.com/

Open Graph

url
https://www.mutuelleverte.com/
title
Mutuelle santé et prévoyance
locale
fr_FR
site name
La Mutuelle Verte
description
La Mutuelle Verte vous propose des garanties santé et prévoyance adaptées à tous les profils et tous les budgets.

Technology

Server
Apache
CMS
WordPress

Third-party hosts loaded (2)

  • tarteaucitron.io×1
  • unpkg.com×1

Social

Registration

Registrar
ORANGE
Created
1998-11-16
Expires
2026-11-15 180 days left
Updated
2026-01-27
Name servers
  • ns01.eolas.fr
  • ns02.eolas.fr
  • ns03.eolas-dns.eu

DNS records live

NS
  • ns01.eolas.fr
  • ns02.eolas.fr
  • ns03.eolas-dns.eu
MX
  • 10 mx01.cloud.vadesecure.com
  • 10 mx02.cloud.vadesecure.com
  • 10 mx03.cloud.vadesecure.com
  • 10 mx04.cloud.vadesecure.com
TXT
Show 5 TXT records
  • trend-micro-v1-domain-verification.354b33f21cbaa6f91c47b84d6b812152=a1f42bea-69e7-4bd7-9c12-178ae75205be
  • sm7925fclq96j4s9g1vjx7htf8h24pxb
  • MS=ms52167232
  • lk5k688x3mfykg9tvrdtkmz45jqf6611
  • khhxsg4kjhzj994z34rt90sp71752hbv

Email authentication weak

SPF
v=spf1 ip4:185.153.8.173 ip4:94.185.69.19 include:spf.cloud.vadesecure.com include:spf.tipimail.com include:spfa.alinto.net -all
strict (-all)
DMARC
not published
DKIM
no key found at common selectors

Certificate (current)

RapidSSL TLS RSA CA G1
from 2026-03-11 to 2026-09-26
Expires in 130 days

Full certificate history on crt.sh ↗

HTTP security headers

Header hygiene 80/100 Checked live page: https://www.mutuelleverte.com/

present
  • strict-transport-security
  • content-security-policy
  • x-frame-options
  • x-content-type-options
findings
  • CSP allows unsafe inline scripts/styles
  • CSP uses wildcard sources
  • missing Referrer Policy
  • missing Permissions Policy
Header values
x-frame-options
SAMEORIGIN
x-content-type-options
nosniff
content-security-policy
default-src 'self' blob:; script-src 'self' 'unsafe-inline' 'unsafe-eval' blob: cdn.matomo.cloud tarteaucitron.io *.tarteaucitron.io challenges.cloudflare.com cdnjs.cloudflare.com; style-src 'self' 'unsafe-inline' unpkg.com *.tarteaucitron.io fonts.googleapis.com; img-src 'self' data: cdnjs.cloudflare.com secure.gravatar.com tarteaucitron.io i.ytimg.com yoast.com; connect-src 'self' *.mutuelleverte.com mutuelleverte.matomo.cloud yoast.com; font-src 'self' data: unpkg.com fonts.gstatic.com; frame-src 'self' challenges.cloudflare.com www.youtube-nocookie.com *.mutuelleverte.com; block-all-mixed-content
strict-transport-security
max-age=31536000; includeSubDomains; preload

Links to (7)

Linked from (2)