rovelzlin.cz

HTML metadata

Technology

Server

nginx

jQuery

2.1.0 known XSS (<3.5)

Stack

PHP

Analytics

• Google Tag Manager

Third-party hosts loaded (2)

• nette.github.io×1
• www.googletagmanager.com×1

Social

• facebook
• linkedin

Contact

Email

• nsklad@rovelzlin.cz
• sklad@rovelzlin.cz

Phone

• +420 603 869 992

DNS records live

NS

• ns1.ignum.com
• ns2.ignum.cz

MX

• 10 ign-mx1.webglobe.com
• 10 ign-mx2.webglobe.com
• 10 ign-mx3.webglobe.com
• 10 ign-mx4.webglobe.com

Verified for

• Microsoft 365

Email authentication partial

SPF

v=spf1 a mx include:_spf.webglobe.cz include:spf.protection.outlook.com ip4:90.180.235.3 ~all

softfail (~all)

DMARC

v=DMARC1; p=none;

policy: none (monitoring only)

DKIM

• default: v=DKIM1; k=rsa; p=MIGfMA0GCSqGSIb3DQEBAQUAA4GNADCBiQKBgQDg41XNCzCc8mGW/TcsyipSkyZtOXFJ/CAQGncRIJbmztDAESDhUpvhIYiLRU06IAajeejBllVpHi1LWbypPa…

selectors probed

Certificate (current)

Full certificate history on crt.sh ↗

HTTP security headers

Header hygiene 60/100 Checked live page: https://rovelzlin.cz/

present

• content-security-policy
• x-frame-options

findings

• missing HSTS
• missing content type protection
• missing Referrer Policy
• missing Permissions Policy

Links to (14)

• websablony.eu×1
• smartsupp.com×1
• smartlook.com×1
• seznam.cz×1
• petrasrezek.cz×1
• opera.com×1
• mozilla.org×1
• microsoft.com×1
• machin.cz×1
• linkedin.com×1
• heurekashopping.cz×1
• google.com×1
• facebook.com×1
• apple.com×1

Linked from (1)

• infozlin.cz×1