indexo.dev

paidis-world.de

.de crawl

First seen 2026-05-15 · Last seen 2026-05-20 · ok HTTP/1.1 200 3696 ms crawled 2026-05-20

FR · 46.163.78.146 · AS8972 Host Europe GmbH

Reputation 92/100 no dmarc policy

Classifying

HTML metadata

Title
PAIDIs World. Das Familienmagazin.
Description
Wir sind Mütter, Väter, Tanten, Onkel und Geschwister aus Leidenschaft und lieben alles rund um den wohl schönsten Ort, den es gibt: das Kinderzimmer.
Language
de
Canonical
https://www.paidis-world.de/
Feeds

Open Graph

url
https://www.paidis-world.de/
title
PAIDIs World. Das Familienmagazin.
locale
de_DE
site name
PAIDIs World. Das Familienmagazin.
description
Wir sind Mütter, Väter, Tanten, Onkel und Geschwister aus Leidenschaft und lieben alles rund um den wohl schönsten Ort, den es gibt: das Kinderzimmer.

Technology

Server
nginx
CMS
WordPress
PHP
8.1.34 end of life
jQuery
3.7.1

Third-party hosts loaded (2)

  • consent.cookiefirst.com×2
  • gmpg.org×1

Registration

Updated
2023-04-25
Name servers
  • ns.udag.de.
  • ns.udag.net.
  • ns.udag.org.

DNS records live

NS
  • ns.udag.de
  • ns.udag.net
  • ns.udag.org
MX
  • 10 mx00.udag.de
  • 20 mx01.udag.de

Email authentication weak

SPF
not published
DMARC
not published
DKIM
no key found at common selectors

Certificate (current)

R12
from 2026-05-03 to 2026-08-01
Expires in 73 days

Full certificate history on crt.sh ↗

HTTP security headers

Header hygiene 80/100 Checked live page: https://www.paidis-world.de/

present
  • strict-transport-security
  • content-security-policy
  • x-frame-options
  • x-content-type-options
  • referrer-policy
  • permissions-policy
findings
  • CSP allows unsafe inline scripts/styles
  • CSP uses wildcard sources
  • weak frame protection
  • weak content type protection
Header values
referrer-policy
strict-origin-when-cross-origin, strict-origin-when-cross-origin
x-frame-options
SAMEORIGIN, SAMEORIGIN
permissions-policy
private-state-token-redemption=(self "https://www.google.com" "https://www.gstatic.com" "https://recaptcha.net" "https://challenges.cloudflare.com" "https://hcaptcha.com"), private-state-token-issuance=(self "https://www.google.com" "https://www.gstatic.com" "https://recaptcha.net" "https://challenges.cloudflare.com" "https://hcaptcha.com")
x-content-type-options
nosniff, nosniff
content-security-policy
default-src 'self' https: data:; style-src 'self' https: data: 'unsafe-inline' 'unsafe-hashes' https://consent.cookiefirst.com; script-src 'self' 'unsafe-inline' 'unsafe-hashes' 'unsafe-eval' https://*.googleapis.com https://consent.cookiefirst.com https://*.googletagmanager.com https://www.google-analytics.com https://assets.pinterest.com https://widgets.pinterest.com https://log.pinterest.com https://*.pinterest.com https://pinterest.com; font-src 'self' https: data: https://fonts.gstatic.com https://maxcdn.bootstrapcdn.com; frame-src 'self' https: data: https://www.youtube.com https://www.youtube-nocookie.com, default-src 'self' https: data:; style-src 'self' https: data: 'unsafe-inline' 'unsafe-hashes' https://consent.cookiefirst.com; script-src 'self' https: data: 'unsafe-inline' 'unsafe-hashes' 'unsafe-eval' https://*.googleapis.com https://*.googletagmanager.com https://www.google-analytics.com https://consent.cookiefirst.com https://assets.pinterest.com https://widgets.pinteres
strict-transport-security
max-age=31536000; includeSubDomains, max-age=31536000; includeSubDomains; preload, max-age=15768000; includeSubDomains, max-age=31536000; includeSubDomains; preload

Links to (1)

Linked from (1)