plombier-artisan.net
plombier-artisan.net
HTML metadata
Technology
- CDN
- Cloudflare
- CMS
- WordPress
- jQuery
- 3.2.1 known XSS (<3.5)
- Stack
- PHP
- Fonts
-
- Google Fonts
Third-party hosts loaded (4)
- cdnjs.cloudflare.com×4
- fonts.googleapis.com×2
- code.jquery.com×1
- fonts.gstatic.com×1
Registration
- Registrar
- Namebay SAM
- Created
- 2020-05-24
- Expires
- 2027-05-24 356 days left
- Updated
- 2026-05-08
- Name servers
-
- fish.ns.cloudflare.com
- nikon.ns.cloudflare.com
DNS records live
- NS
-
- fish.ns.cloudflare.com
- nikon.ns.cloudflare.com
- MX
-
- 10 _dc-mx.940660a339c1.plombier-artisan.net
- 10 _dc-mx.e1fa8c2230f8.plombier-artisan.net
Email authentication weak
- SPF
- not published
- DMARC
- not published
- DKIM
- no key found at common selectors
Certificate (current)
WE1
Expires in 69 days
HTTP security headers
- present
-
- content-security-policy
- x-frame-options
- x-content-type-options
- referrer-policy
- permissions-policy
- findings
-
- missing HSTS
- CSP allows unsafe inline scripts/styles
- weak frame protection
- weak content type protection
Header values
- referrer-policy
strict-origin-when-cross-origin, strict-origin-when-cross-origin, same-origin, strict-origin-when-cross-origin- x-frame-options
SAMEORIGIN, SAMEORIGIN, SAMEORIGIN, SAMEORIGIN- permissions-policy
geolocation=(), microphone=(), camera=()- x-content-type-options
nosniff, nosniff, nosniff, nosniff- content-security-policy
default-src 'self' https: data: 'unsafe-inline' 'unsafe-eval';, default-src 'self' https: data: 'unsafe-inline' 'unsafe-eval';