nestor-hotels.de

.de crawl

First seen 2026-04-12 · Last seen 2026-05-05 · ok HTTP/1.1 200 4453 ms crawled 2026-05-05

DE · 185.181.132.218 · AS15817 Mittwald CM Service GmbH & Co. KG

Reputation 95/100 weak security headers

Classifying

HTML metadata

Title

nestor Hotel Ludwigsburg

Description

Erfolgreiche Tagungen | Erlebnisreiche Aufenthalte | Erholsamer Schlaf | Top Gästebewertungen ► Jetzt Hotelzimmer sichern!

Language

de-DE

Generator

WordPress 6.5.8

Canonical

https://www.nestor-hotels.de/

Translations

Open Graph

url: https://www.nestor-hotels.de/
title: nestor Hotel Ludwigsburg
locale: de_DE
site name: nestor - Auf Reisen zu Hause
description: Erfolgreiche Tagungen | Erlebnisreiche Aufenthalte | Erholsamer Schlaf | Top Gästebewertungen ► Jetzt Hotelzimmer sichern!
locale:alternate: en_GB

Technology

Server: Apache
CMS: WordPress

Analytics

Google Tag Manager

Third-party hosts loaded (4)

api.trustyou.com×1
cdn.trustyou.com×1
widget.prod.seminargo.eu×1
www.googletagmanager.com×1

Registration

Updated

2024-06-04

Name servers

ns01.agenturserver.co.
ns01.agenturserver.de.
ns01.agenturserver.it.

DNS records live

NS

ns01.agenturserver.co
ns01.agenturserver.de
ns01.agenturserver.it

MX

10 nestorhotels-de01e.mail.protection.outlook.com

TXT

MS=ms44255287
v=spf1 a mx ip4:151.193.18.41 include:spf.synxis.com include:spf.sendinblue.com include:spf.protection.outlook.com include:spf.customice.de include:spf.eu.exclaimer.net include:agenturserver.de ~all
google-site-verification=ervm8OzJzPtcmxR22UE9JynYhFM4IEq3mXOoOYWQ5BM

Certificate (current)

R12

from 2026-05-01 to 2026-07-30

Expires in 72 days

Full certificate history on crt.sh ↗

HTTP security headers

Header hygiene 45/100 Checked live page: https://www.nestor-hotels.de/

present

content-security-policy
referrer-policy

findings

missing HSTS
CSP allows unsafe inline scripts/styles
CSP uses wildcard sources
missing frame protection
missing content type protection
missing Permissions Policy

Header values

referrer-policy: no-referrer-when-downgrade
content-security-policy: default-src 'self' *.payengine.de *.hotelcareer.de *.sibforms.com *.nestor-hotels.de *.ghotel.de *.greensign.de *.ghotel-group.de *.relay-t.io *.trustyou.com *.komoot.com *.openstreetmap.org *.googletagmanager.com *.youtube.com *.dialogshift.com *.cookiebot.com *.bing.com *.doubleclick.net; img-src 'self' *.nestor-hotels.de *.seminargo.eu woo.com *.kununu.com *.greensign.de *.ghotel.de *.ghotel-group.de secure.gravatar.com *.cartocdn.com *.googleapis.com *.gstatic.com *.bing.com *.cookielaw.org *.linkedin.com *.google.com *.google.de *.facebook.com *.w.org *.cookiebot.com data:; script-src 'self' *.hs-analytics.net *.nestor-hotels.de *.seminargo.eu *.trustyou.com *.komoot.com *.payengine.de *.sibforms.com *.relay-t.io *.greensign.de *.dialogshift.com *.googleapis.com *.bing.com *.doubleclick.net *.facebook.net *.cookielaw.org *.googletagmanager.com *.cookiebot.com 'unsafe-inline' 'unsafe-eval' blob:; connect-src 'self' *.trustyou.com *.nestor-hotels.de *.seminargo.eu *.sibforms.com *.y

Links to (1)

ghotel-group.de×2

Linked from (1)

ghotel.de×2