indexo.dev

raportyplacowe.pl

.pl crawl

First seen 2026-06-01 · Last seen 2026-06-01 · ok HTTP/1.1 200 948 ms crawled 2026-06-01

PL · 185.41.71.202 · AS50840 HITME.PL

Reputation 94/100 dmarc monitor-only

Classifying

HTML metadata

Title
Raporty Płacowe Sedlak & Sedlak
Description
Raporty płacowe to dane o wynagrodzeniach, podwyżkach i benefitach. Porównaj swoją firmę z rynkiem. Sprawdź dane wojewódzkie i branżowe.
Language
pl

Technology

Server
LiteSpeed
CMS
Gatsby
Stack
PHP
Analytics
  • Google Tag Manager
Fonts
  • Google Fonts

Third-party hosts loaded (3)

  • fonts.googleapis.com×4
  • px.ads.linkedin.com×1
  • www.googletagmanager.com×1

Contact

Phone

DNS records live

NS
  • dns3.hitme.net.pl
  • dns4.hitme.net.pl
MX
  • 10 mail.raportyplacowe.pl
TXT
  • smv=fg705z7oyaq5p26j
Verified for
  • Google

Email authentication partial

SPF
v=spf1 a mx ip4:185.41.71.202 ip4:31.172.191.10 include:_spf.jupiter.salesmanago.pl ~all
softfail (~all)
DMARC
v=DMARC1; p=none; rua=mailto:admin@raportyplacowe.pl; ruf=mailto:admin@raportyplacowe.pl; fo=1
policy: none (monitoring only)
DKIM
no key found at common selectors

Certificate (current)

Sectigo Public Server Authentication CA DV R36
from 2026-04-18 to 2026-11-03
Expires in 154 days

Full certificate history on crt.sh ↗

HTTP security headers

Header hygiene 90/100 Checked live page: https://raportyplacowe.pl/

present
  • strict-transport-security
  • content-security-policy
  • x-frame-options
  • x-content-type-options
  • referrer-policy
  • permissions-policy
findings
  • CSP allows unsafe inline scripts/styles
  • CSP uses wildcard sources
Header values
referrer-policy
strict-origin-when-cross-origin
x-frame-options
SAMEORIGIN
permissions-policy
accelerometer=(), autoplay=(), camera=(), cross-origin-isolated=(), display-capture=(), encrypted-media=(), fullscreen=(self "https://www.youtube.com"), geolocation=(), gyroscope=(), keyboard-map=(), magnetometer=(), microphone=(), midi=(), payment=(), publickey-credentials-get=(), screen-wake-lock=(), sync-xhr=(self), usb=(), xr-spatial-tracking=(), clipboard-read=(self), clipboard-write=(self), gamepad=()
x-content-type-options
nosniff
content-security-policy
default-src 'self'; script-src 'self' 'unsafe-eval' 'unsafe-inline' https://pagead2.googlesyndication.com https://googleadservices.com https://googleadservices.com https://static.hotjar.com/ https://script.hotjar.com/ https://www.gstatic.com https://www.google.com/recaptcha/api.js https://www.google.com/recaptcha/api2/anchor https://cdnjs.cloudflare.com https://app3.salesmanago.pl https://www.googletagmanager.com https://connect.facebook.net https://www.google-analytics.com https://googleads.g.doubleclick.net https://player.vimeo.com https://snap.licdn.com/li.lms-analytics/insight.min.js https://www.clarity.ms https://scripts.clarity.ms; object-src 'none'; form-action 'self'; base-uri 'none'; img-src 'self' data: *; frame-src 'self' https://www.googletagmanager.com https://app3.salesmanago.pl https://salesmanago.pl https://www.google.com https://td.doubleclick.net/ https://www.youtube.com/ https://player.vimeo.com; connect-src 'self' https://vc-service.salesmanago.pl https://google.com
strict-transport-security
max-age=31536000

Links to (5)

Linked from (5)