indexo.dev

nivea.de

.de crawl

First seen 2026-04-17 · Last seen 2026-05-15 · ok HTTP/1.1 200 3757 ms crawled 2026-05-12

US · 104.210.154.101 · AS8075 Microsoft Corporation

Reputation 95/100 weak security headers

Classifying

HTML metadata

Title
NIVEA.de
Description
Willkommen auf der NIVEA Website! Wir bieten Ihnen tolle Tipps und spannende Möglichkeiten rund um die beliebten Hautpflegeprodukte von NIVEA.
Language
de-DE
Canonical
https://www.nivea.de

Open Graph

title
NIVEA.de
description
Willkommen auf der NIVEA Website! Wir bieten Ihnen tolle Tipps und spannende Möglichkeiten rund um die beliebten Hautpflegeprodukte von NIVEA.

Technology

CDN
Azure Front Door
Analytics
  • Google Analytics
  • Google Tag Manager
Ads
  • Google Ads (DoubleClick)
  • Meta Pixel
Third-party hosts loaded (16)
  • img.nivea.com×29
  • tm-eu.beiersdorf.com×3
  • ab-eu.beiersdorf.com×1
  • api.my-app.com×1
  • b.delivery.consentmanager.net×1
  • cdn.consentmanager.net×1
  • connect.facebook.net×1
  • googleads.g.doubleclick.net×1
  • img.nivea.com ×1
  • s2.adform.net×1
  • ssl.google-analytics.com×1
  • stats.g.doubleclick.net×1
  • track.adform.net×1
  • www.facebook.com×1
  • www.google-analytics.com×1
  • www.googletagmanager.com×1

Social

Registration

Updated
2025-08-11
Name servers
  • ns1.netnames.net.
  • ns2.netnames.net.
  • ns5.netnames.net.
  • ns6.netnames.net.

DNS records live

NS
  • ns1.netnames.net
  • ns2.netnames.net
  • ns5.netnames.net
  • ns6.netnames.net
MX
  • 20 nivea-de.mail.protection.outlook.com
TXT
Show 6 TXT records
  • t212/vYDP27xObXu3DWqqNGCeZ69JBFgwn6WKK8aEVSiBMFH5/SnYsV+4HcxH/4du5z/8OubSVetGY8g+FRCIA==
  • MS=ms99741862
  • facebook-domain-verification=d9bldnqvdhfpeopgtbaspm0jnd2xg0
  • google-site-verification=Ca8k6i_ze7szJppRae_UzQAM83aWRp007T-jmnKicgI
  • google-site-verification=eblAeSvaoiWXcy0xzMYhe1xXT02yZYrKuuI0kErg8o0
  • google-site-verification=mAtMK1bTqe1kJlMEj49RY063Xi0GRHUKUxLsYsxNJKE

Email authentication strong

SPF
v=spf1 include:spf.protection.outlook.com include:spf.servicemail24.de -all
strict (-all)
DMARC
v=DMARC1; p=reject; fo=1; rua=mailto:beiersdorf@rua.agari.com; ruf=mailto:beiersdorf@ruf.agari.com
policy: reject (enforced)
DKIM
no key found at common selectors

Certificate (current)

R12
from 2026-04-14 to 2026-07-13
Expires in 55 days

Full certificate history on crt.sh ↗

HTTP security headers

Header hygiene 45/100 Checked live page: https://www.nivea.de/

present
  • content-security-policy
findings
  • missing HSTS
  • CSP allows unsafe inline scripts/styles
  • missing frame protection
  • missing content type protection
  • missing Referrer Policy
  • missing Permissions Policy
Header values
content-security-policy
default-src https: 'unsafe-inline' 'unsafe-eval' wss://umd.userlike.com wss://ws.botmaker.com; worker-src blob:; img-src 'self' blob: data: https:; font-src 'self' data: https:

Links to (8)

Linked from (4)