indexo.dev

quintonmedical.com

.com crawl

First seen 2026-04-14 · Last seen 2026-05-06 · ok HTTP/1.1 200 1859 ms crawled 2026-05-09

US · 104.26.13.138 · AS13335 Cloudflare, Inc.

Reputation 87/100 weak security headers no dmarc policy

Classifying

HTML metadata

Title
Your Seawater Store | Quinton Medical
Description
Seawater products for your health and wellbeing. 100% natural, scientifically endorsed, no contraindications. Discover them here!
Language
en
Canonical
https://quintonmedical.com
Translations
  • en
  • es

Open Graph

locale
en
site name
Quinton Medical

Technology

CDN
Cloudflare
CMS
Gatsby
Analytics
  • Google Tag Manager
Fonts
  • Google Fonts

Third-party hosts loaded (3)

  • www.googletagmanager.com×2
  • cdnjs.cloudflare.com×1
  • fonts.googleapis.com×1

Social

Registration

Registrar
Tucows Domains Inc.
Created
2019-02-18
Expires
2027-02-18 273 days left
Updated
2026-01-28
Name servers
  • dolly.ns.cloudflare.com
  • trey.ns.cloudflare.com

DNS records live

NS
  • dolly.ns.cloudflare.com
  • trey.ns.cloudflare.com
MX
  • 10 mx10.antispam.mailspamprotection.com
  • 20 mx20.antispam.mailspamprotection.com
  • 30 mx30.antispam.mailspamprotection.com
Verified for
  • Google

Email authentication weak

SPF
v=spf1 +a +mx +a:ams8.siteground.eu include:_spf.mailspamprotection.com ~all
softfail (~all)
DMARC
not published
DKIM
  • default: v=DKIM1; k=rsa; p=MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAuQtrDVuYeo7d3M4hiEWJGk1t1gDpIdTkI3FVRaBxdDnSwIZJP0QDT4vbBZNFQL1MAI3E8Pu9M4TfAn…
selectors probed

Certificate (current)

WE1
from 2026-03-27 to 2026-06-25
Expires in 36 days

Full certificate history on crt.sh ↗

HTTP security headers

Header hygiene 40/100 Checked live page: https://quintonmedical.com/

present
  • content-security-policy-report-only
  • x-frame-options
  • x-content-type-options
findings
  • missing HSTS
  • missing Content Security Policy
  • weak frame protection
  • weak content type protection
  • missing Referrer Policy
  • missing Permissions Policy
Header values
x-frame-options
SAMEORIGIN, SAMEORIGIN
x-content-type-options
nosniff, nosniff
content-security-policy-report-only
font-src fonts.gstatic.com use.typekit.net *.typekit.net *.gstatic.com *.googleapis.com *.fontawesome.com data: 'self' 'unsafe-inline'; form-action geostag.cardinalcommerce.com geo.cardinalcommerce.com 1eafstag.cardinalcommerce.com 1eaf.cardinalcommerce.com centinelapistag.cardinalcommerce.com centinelapi.cardinalcommerce.com pilot-payflowlink.paypal.com www.paypal.com www.sandbox.paypal.com *.paypal.com *.cardinalcommerce.com 3ds-secure.cardcomplete.com www.clicksafe.lloydstsb.com pay.activa-card.com *.wirecard.com acs.sia.eu *.touchtechpayments.com www.securesuite.co.uk rsa3dsauth.com *.monzo.com *.arcot.com *.wlp-acs.com * 'self' www.facebook.com connect.facebook.net graph.facebook.com business.facebook.com 'self' 'unsafe-inline'; frame-ancestors 'self'; frame-src fast.amc.demdex.net *.adobe.com bid.g.doubleclick.net https://www.youtube.com *.youtube-nocookie.com geostag.cardinalcommerce.com geo.cardinalcommerce.com 1eafstag.cardinalcommerce.com 1eaf.cardinalcommerce.com centinelapi

Links to (7)

Linked from (1)