indexo.dev

nivea.co.uk

.uk crawl

First seen 2026-04-13 · Last seen 2026-05-11 · ok HTTP/1.1 200 4178 ms crawled 2026-05-07

US · 104.210.154.101 · AS8075 Microsoft Corporation

Reputation 95/100 weak security headers

Classifying

HTML metadata

Title
NIVEA
Description
Welcome to the NIVEA Website! We offer you great tips and exciting opportunities related to the loved skincare products by NIVEA.
Language
en-GB
Canonical
https://www.nivea.co.uk

Open Graph

title
Homepage - NIVEA
description
Always there for me: NIVEA

Technology

CDN
Azure Front Door
Analytics
  • Google Analytics
  • Google Tag Manager
Ads
  • Google Ads (DoubleClick)
  • Meta Pixel
Third-party hosts loaded (12)
  • img.nivea.com×54
  • tm-eu.beiersdorf.com×2
  • www.googletagmanager.com×2
  • cdn.consentmanager.net×1
  • connect.facebook.net×1
  • delivery.consentmanager.net×1
  • googleads.g.doubleclick.net×1
  • s2.adform.net×1
  • stats.g.doubleclick.net×1
  • track.adform.net×1
  • www.facebook.com×1
  • www.google-analytics.com×1

Social

Registration

Registrar
CSC Corporate Domains, Inc
Created
1998-03-11
Expires
2027-03-11 295 days left
Updated
2026-03-08
Name servers
  • ns1.netnames.net.
  • ns2.netnames.net.
  • ns5.netnames.net.
  • ns6.netnames.net.

DNS records live

NS
  • ns1.netnames.net
  • ns2.netnames.net
  • ns5.netnames.net
  • ns6.netnames.net
MX
  • 20 nivea-co-uk.mail.protection.outlook.com
TXT
Show 6 TXT records
  • MS=ms93504732
  • google-site-verification=CEPYStv5wXM_H-y-XW7g2D6MKSZrp4warM2K5DDAco0
  • google-site-verification=nlDHjP7WKZgfLAWEzx5v8a4BPieVd0KqJ6EYsK2XGkE
  • google-site-verification=v2crOyRXRZFgtg8lrMgYcMvhklPuuJujwzPn5pUjVbE
  • google-site-verification=vQ5rkOsilOpoXDZ-hZm4uYl1Ws8FU9Wd19zm98jxSqc
  • Sb6AQvq21uo5fdXP0Ot9bw1sp9us0A6nKtRINx7//faj8QKMePx9BQ0KZXpFb+WJZWUc09OwwLGaFGiDDiOY8w==

Email authentication strong

SPF
v=spf1 ip4:185.220.230.112/31 ip4:185.220.228.128/30 ip4:221.232.147.18 ip4:218.106.115.66 include:spf.protection.outlook.com -all
strict (-all)
DMARC
v=DMARC1; p=reject; fo=1; rua=mailto:beiersdorf@rua.agari.com; ruf=mailto:beiersdorf@ruf.agari.com
policy: reject (enforced)
DKIM
no key found at common selectors

Certificate (current)

R13
from 2026-04-07 to 2026-07-06
Expires in 48 days

Full certificate history on crt.sh ↗

HTTP security headers

Header hygiene 45/100 Checked live page: https://www.nivea.co.uk/

present
  • content-security-policy
findings
  • missing HSTS
  • CSP allows unsafe inline scripts/styles
  • missing frame protection
  • missing content type protection
  • missing Referrer Policy
  • missing Permissions Policy
Header values
content-security-policy
default-src https: 'unsafe-inline' 'unsafe-eval' wss://umd.userlike.com wss://ws.botmaker.com; worker-src blob:; img-src 'self' blob: data: https:; font-src 'self' data: https:

Links to (4)

Linked from (4)