nussbaumlifts.com

HTML metadata

Title: Hebebühnen Kfz » Hebebühnen für die Autowerkstatt - Made in Germany seit über 40 Jahren
Description: Hebebühnen für Kfz-Profis. Made in Germany seit über 40 Jahren. 2-Säulenhebebühnen, Scherenhebebühnen, 4-Säulenhebebühnen, Doppelscherenhebebühnen, mobile Hebebühnen, Kurzhubhebebühnen und mehr. Für freie Werkstätten, OEM-Servicepartner, Grosskunden.
Language: de-DE
Generator: Silverstripe CMS 4.13

Open Graph

url: https://www.nussbaumlifts.com/
title: Hebebühnen Kfz
locale: de_DE
site name: Hebebühnen für die Autowerkstatt - Made in Germany seit über 40 Jahren
description: Hebebühnen für Kfz-Profis. Made in Germany seit über 40 Jahren. 2-Säulenhebebühnen, Scherenhebebühnen, 4-Säulenhebebühnen, Doppelscherenhebebühnen, mobile Hebebühnen, Kurzhubhebebühnen und mehr. Für freie Werkstätten, OEM-Servicepartner, Grosskunden.

Technology

Server: Apache
Stack: PHP

Analytics

Google Tag Manager

Cookie consent

Usercentrics

Third-party hosts loaded (2)

app.eu.usercentrics.eu×1
www.googletagmanager.com×1

Social

Registration

Registrar

Gandi SAS

Created

2016-09-30

Expires

2026-09-30 131 days left

Updated

2025-09-19

Name servers

ara.ns.cloudflare.com
norman.ns.cloudflare.com

DNS records live

NS

ara.ns.cloudflare.com
norman.ns.cloudflare.com

MX

10 mx01.badencloud.de
10 mx02.badencloud.de

TXT

duo_sso_verification=XTb5ZU9GovjsNRHuw71hnsKwonGbNcIHRspawb7fqVU6n509Zk9W4XBqpWxzxaFi

Verified for

Brevo
Microsoft 365

Email authentication partial

SPF

v=spf1 ip4:217.28.109.185 include:_spf-ipa.badencloud.de include:spf.protection.outlook.com include:spf-de.emailsignatures365.com include:spf.sendinblue.com -all

strict (-all)

DMARC

v=DMARC1;p=none;

policy: none (monitoring only)

DKIM

k2: v=DKIM1; k=rsa; p=MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAv2aC2KjGKLOwTweBY5A9RpjsxaBXR9r7OAU6U8/zn92ivImI75naUujWbItRI/QmL1jy5PWGqLwoUA…
mail: k=rsa;p=MIGfMA0GCSqGSIb3DQEBAQUAA4GNADCBiQKBgQDeMVIzrCa3T14JsNY0IRv5/2V1/v2itlviLQBwXsa7shBD6TrBkswsFUToPyMRWC9tbR/5ey0nRBH0ZVxp+lsmTxid2Y2z…

selectors probed

Certificate (current)

R13

from 2026-05-14 to 2026-08-12

Expires in 83 days

Full certificate history on crt.sh ↗

HTTP security headers

Header hygiene 85/100 Checked live page: https://www.nussbaumlifts.com/

present

strict-transport-security
content-security-policy
x-frame-options
x-content-type-options
referrer-policy

findings

CSP allows unsafe inline scripts/styles
CSP uses wildcard sources
missing Permissions Policy

Header values

referrer-policy: no-referrer, same-origin
x-frame-options: DENY
x-content-type-options: nosniff
content-security-policy: base-uri 'self'; frame-ancestors 'self'; style-src: 'self' 'unsafe-inline'; form-action 'self' https://www.mollie.com/* default-src 'none'; img-src 'self' 'unsafe-inline' 'unsafe-eval' http://maps.gstatic.com http://maps.google.com https://app.eu.usercentrics.eu/session/1px.png https://uct.eu.usercentrics.eu/uct https://uc.e-recht24.de/erecht24-logo-standard.svg data:; script-src 'self' 'unsafe-inline' 'unsafe-eval' https://app.usercentrics.eu/ https://app.eu.usercentrics.eu/ https://config.eu.usercentrics.eu/ https://www.google-analytics.com/ https://app.eu.usercentrics.eu/browser-ui/latest/loader.js https://app.eu.usercentrics.eu/browser-ui/3.36.0/index.module.js https://config.eu.usercentrics.eu/settings/TD71DIlJh/latest/de.json https://cdnjs.cloudflare.com/ https://www.googletagmanager.com/ https://www.google-analytics.com/ http://maps.google.com http://maps.googleapis.com/ https://www.google.com/recaptcha/ https://www.gstatic.com/recaptcha/
strict-transport-security: max-age=31536000; includeSubDomains

Links to (8)

Linked from (2)

chrkapodistrias.com×2
nussbaum-usa.com×1