pictoaccess.fr

HTML metadata

Title: Picto Access
Description: Picto Access: digital solutions at the service of your accessibility which supports you in building a world accessible everywhere & for all.
Language: en
Canonical: https://www.pictoaccess.fr

Open Graph

url: https://www.pictoaccess.fr
locale: fr_FR
site name: Picto Access
description: Picto Access: digital solutions at the service of your accessibility which supports you in building a world accessible everywhere & for all.

Technology

CDN: Cloudflare
CMS: Next.js

Fonts

Google Fonts

Third-party hosts loaded (3)

api.mapbox.com×1
fonts.googleapis.com×1
www.google.com×1

Social

Contact

Phone

+33644646401

Address

rue du Bazinghien, 59120

Registration

Registrar

OVH

Created

2017-06-29

Expires

2026-06-29 40 days left

Updated

2025-07-31

Name servers

boyd.ns.cloudflare.com
maria.ns.cloudflare.com

DNS records live

NS

boyd.ns.cloudflare.com
maria.ns.cloudflare.com

MX

1 aspmx.l.google.com
10 alt3.aspmx.l.google.com
10 alt4.aspmx.l.google.com
5 alt1.aspmx.l.google.com
5 alt2.aspmx.l.google.com

TXT

Show 4 TXT records

v=DMARC1; p=none; rua=mailto:admintech@pictoaccess.fr
google-site-verification=hqAGUOuOCnotz5aeqwyutNZ-rF6cjUEYNugHhdGd5bE
k=rsa;p=MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAh/PLoIpolrRV8vYYR1MjLDCJdeHMsiOJRdXua5S6X41X8jaupRDUC/HeaLmZu6gbCB+r6vR3UpAxsx0XgWdAFKb3f7z38pnJGoXrsy+jXz6dS00zfmFDw7xFXuxpwYi3Q8wHQBphPzCNG9PWe0xRpAgVBBCJSN4uh5v+tu5eva29bjfk3NZt5inluHoPLFwMq7S8t8MpP1gDSLlolh/KmzGw4Iivw81DGvzjCSKrPKwK4p1pF4T21SLeGF2SUolBcuxesW78NrgEl325y/mBfInR60FJ5E052pBx/1zQuZctjDl66oeMU81n5zhKv1otUoAa83e00K180gFpVFAkewIDAQAB;
v=DKIM1; k=rsa; p=MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAh/PLoIpolrRV8vYYR1MjLDCJdeHMsiOJRdXua5S6X41X8jaupRDUC/HeaLmZu6gbCB+r6vR3UpAxsx0XgWdAFKb3f7z38pnJGoXrsy+jXz6dS00zfmFDw7xFXuxpwYi3Q8wHQBphPzCNG9PWe0xRpAgVBBCJSN4uh5v+tu5eva29bjfk3NZt5inluHoPLFwMq

Email authentication weak

SPF

v=spf1 include:mx.ovh.com include:_spf.google.com -all

strict (-all)

DMARC

not published

DKIM

google: v=DKIM1; k=rsa; p=MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAh/PLoIpolrRV8vYYR1MjLDCJdeHMsiOJRdXua5S6X41X8jaupRDUC/HeaLmZu6gbCB+r6vR3UpAxsx…
s1: k=rsa; t=s; p=MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAtheE0vbKFzCUVJtUxviAU13lS0kbAa6/bygZrrrBZ3Z+GNw2gk3v7Y7E8Ooz5uaT1ry6TaNDg43n6vrLdS…
s2: k=rsa; t=s; p=MIGfMA0GCSqGSIb3DQEBAQUAA4GNADCBiQKBgQCrUgSTasYvgv5TQlj5Tf6ffP/8mKAqkqvn2QA7CZRUby7S6WPo6VsCI2URfzrZ7doYqA1dUn4+/KvUFFUqjRyjBa…

selectors probed

Certificate (current)

WE1

from 2026-05-09 to 2026-08-07

Expires in 80 days

Full certificate history on crt.sh ↗

HTTP security headers

Header hygiene 75/100 Checked live page: https://pictoaccess.fr/en

present

strict-transport-security
content-security-policy
x-content-type-options
referrer-policy

findings

CSP allows unsafe inline scripts/styles
CSP uses wildcard sources
missing frame protection
missing Permissions Policy

Header values

referrer-policy: strict-origin-when-cross-origin
x-content-type-options: nosniff
content-security-policy: script-src self 'unsafe-eval' 'unsafe-inline' localhost:3000 localhost:25000 www.gstatic.com www.google.com google.analytics.com www.google-analytics.com www.googletagmanager.com maps.googleapis.com api.mapbox.com *.pictoaccess.test *.pictoaccess.fr pictoaccess.fr pictoaccess.test www.youtube.com youtube.com https://www.youtube.com/;img-src self data: blob: localhost:3000 localhost:25000 www.google-analytics.com *.amazonaws.com *.pictoaccess.fr *.pictoaccess.test pictoaccess.test pictoaccess.fr;connect-src self sentry.unisc.fr *.pictoaccess.fr *.pictoaccess.test pictoaccess.fr pictoaccess.test *.mapbox.com www.google-analytics.com wss://*.pictoaccess.test wss://pictoaccess.test www.youtube.com youtube.com https://www.youtube.com/ localhost:25000;worker-src self blob:;child-src self blob:;object-src data:;frame-src self www.google.com www.youtube.com youtube.com https://www.youtube.com/;frame-ancestors self * data:;default-src 'self';base-uri 'self';block-all-mixed-content;font-src 'sel
strict-transport-security: max-age=15552000; includeSubDomains