nivea.fr

.fr crawl

First seen 2026-04-17 · Last seen 2026-05-12 · ok HTTP/1.1 200 1386 ms crawled 2026-05-12

US · 104.210.154.101 · AS8075 Microsoft Corporation

Reputation 95/100 weak security headers

Classifying

HTML metadata

Title: Produits cosmétiques, soin visage et corps - NIVEA
Description: Bienvenue sur le site de NIVEA ! Découvrez nos produits cosmétiques pour le visage et le corps, et bénéficiez de conseils dédiés au soin de la peau.
Language: fr-FR
Canonical: https://www.nivea.fr

Open Graph

title: Produits cosmétiques, soin visage et corps - NIVEA
description: Bienvenue sur le site de NIVEA ! Découvrez nos produits cosmétiques pour le visage et le corps, et bénéficiez de conseils dédiés au soin de la peau.

Technology

CDN: Azure Front Door

Analytics

Google Analytics
Google Tag Manager

Ads

Google Ads (DoubleClick)
Meta Pixel

Third-party hosts loaded (12)

img.nivea.com×27
tm-eu.beiersdorf.com×2
cdn.consentmanager.net×1
connect.facebook.net×1
delivery.consentmanager.net×1
googleads.g.doubleclick.net×1
s2.adform.net×1
stats.g.doubleclick.net×1
track.adform.net×1
www.facebook.com×1
www.google-analytics.com×1
www.googletagmanager.com×1

Social

Registration

Registrar

CSC CORPORATE DOMAINS INC.

Created

2001-11-26

Expires

2026-06-16 28 days left

Updated

2025-09-02

Name servers

ns1.netnames.net
ns2.netnames.net
ns5.netnames.net
ns6.netnames.net

DNS records live

NS

ns1.netnames.net
ns2.netnames.net
ns5.netnames.net
ns6.netnames.net

MX

20 nivea-fr.mail.protection.outlook.com

TXT

MS=ms94851521
google-site-verification=JJzo1C3PkRi_bsH6EHQ_UwmZYPxVfz-OLgxNk9Ib0t8
google-site-verification=sHxP539gZSabv9AA9Je4L-5xO6nNyHLIUvsiB1EvJKY

Email authentication strong

SPF: v=spf1 ip4:185.220.230.112/31 ip4:185.220.228.128/30 ip4:180.166.87.195 ip4:116.128.203.3 include:spf.protection.outlook.com -all
strict (-all)
DMARC: v=DMARC1; p=reject; fo=1; rua=mailto:beiersdorf@rua.agari.com; ruf=mailto:beiersdorf@ruf.agari.com
policy: reject (enforced)
DKIM: no key found at common selectors

Certificate (current)

R12

from 2026-04-14 to 2026-07-13

Expires in 55 days

Full certificate history on crt.sh ↗

HTTP security headers

Header hygiene 45/100 Checked live page: https://www.nivea.fr/

present

content-security-policy

findings

missing HSTS
CSP allows unsafe inline scripts/styles
missing frame protection
missing content type protection
missing Referrer Policy
missing Permissions Policy

Header values

content-security-policy: default-src https: 'unsafe-inline' 'unsafe-eval' wss://umd.userlike.com wss://ws.botmaker.com; worker-src blob:; img-src 'self' blob: data: https:; font-src 'self' data: https:

Links to (6)

Linked from (1)

nivea.com×2