replus.es

HTML metadata

Technology

CMS

WordPress 4.9.2.1 outdated (current 6.8)

jQuery

3.7.1

Stack

PHP

Analytics

• Google Tag Manager

Fonts

• Google Fonts

Third-party hosts loaded (6)

• www.googletagmanager.com×4
• fonts.googleapis.com×3
• cdn.jsdelivr.net×2
• fonts.gstatic.com×1
• gmpg.org×1
• www.facebook.com×1

Social

• youtube
• facebook
• instagram
• linkedin

DNS records live

NS

• dns1.servidoresdns10.com
• dns2.servidoresdns10.com

MX

• 10 aspmx.l.google.com
• 20 alt1.aspmx.l.google.com
• 20 alt2.aspmx.l.google.com
• 30 alt3.aspmx.l.google.com
• 30 alt4.aspmx.l.google.com

Verified for

• Google

Email authentication partial

SPF

v=spf1 include:spf.ipzmarketing.com include:_spf.google.com ~all

softfail (~all)

DMARC

v=DMARC1; p=none; rua=mailto:dmarc-reports@replus.es

policy: none (monitoring only)

DKIM

• google: v=DKIM1; k=rsa; p=MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAnobPPbQdiG5K9LDn2+QDnEUZCEe6wOrC375h/YaGZrTMu/I7WLxMeI61pAzy+BbiwNDhu6h65CLucw…

selectors probed

Certificate (current)

Full certificate history on crt.sh ↗

HTTP security headers

Header hygiene 75/100 Checked live page: https://replus.es/

present

• content-security-policy
• x-frame-options
• x-content-type-options
• referrer-policy
• permissions-policy
• cross-origin-opener-policy
• cross-origin-resource-policy

findings

• missing HSTS
• CSP allows unsafe inline scripts/styles

Links to (7)

• facebook.com×1
• instagram.com×1
• laventanaperfecta.es×1
• linkedin.com×1
• prefweb.com×1
• teamviewer.com×1
• youtube.com×1

Linked from (1)

• ventanasdepvcgranada.com×1