reflexy.cz
HTML metadata
Technology
- Server
- Microsoft-IIS
- CMS
- Gatsby
- jQuery
- 2.2.0 known XSS (<3.5)
- Fonts
-
- Google Fonts
Third-party hosts loaded (2)
- ajax.aspnetcdn.com×2
- fonts.googleapis.com×1
Social
DNS records live
- NS
-
- ns1.aspone.cz
- ns2.aspone.eu
- ns3.aspone.us
- MX
-
- 10 mxavas.forpsi.com
Email authentication weak
- SPF
-
v=spf1 a mx include:_spf.forpsi.com ~allsoftfail (~all) - DMARC
- not published
- DKIM
- no key found at common selectors
Certificate (current)
R12
Expires in 62 days
HTTP security headers
- present
-
- strict-transport-security
- content-security-policy
- findings
-
- short HSTS max-age
- CSP allows unsafe inline scripts/styles
- missing frame protection
- missing content type protection
- missing Referrer Policy
- missing Permissions Policy
Header values
- content-security-policy
default-src 'self';script-src 'self' 'unsafe-inline' https://ajax.aspnetcdn.com https://www.youtube.com https://s.ytimg.com https://cdnjs.cloudflare.com;style-src 'self' 'unsafe-inline' https://fonts.googleapis.com https://cdnjs.cloudflare.com;img-src 'self' https://i.ytimg.com;frame-src https://www.youtube.com;font-src 'self' https://fonts.gstatic.com- strict-transport-security
max-age=2592000
Links to (31)
- youtube.com×1
- vrtal.cz×1
- topnatur.cz×1
- televizetvs.cz×1
- stkvilemovice.cz×1
- spotify.com×1
- ri-okna.cz×1
- radiosoundwave.cz×1
- radiorubi.cz×1
- radiopetrov.com×1
- radiokromeriz.cz×1
- radiohana.cz×1
- radioblatna.cz×1
- radioblanik.cz×1
- raab.cz×1
- pepsi.cz×1
- juvacyklo.cz×1
- instagram.com×1
- idobryden.cz×1
- generali.cz×1
- gambrinus.cz×1
- fajnrockmusic.cz×1
- facebook.com×1
- denik.cz×1
- deezer.com×1
- chabi.cz×1
- bandzone.cz×1
- automotozak.cz×1
- autoexpres.cz×1
- araver.cz×1
- apple.com×1