indexo.dev

sebamed.com

.com crawl

First seen 2026-04-25 · Last seen 2026-05-15 · ok HTTP/1.1 200 2300 ms crawled 2026-05-18

DE · 159.69.102.77 · AS24940 Hetzner Online GmbH

Reputation 92/100 no dmarc policy

Classifying

HTML metadata

Title
sebamed - the medical skincare with pH 5.5 - sebamed
Description
The carefully developed products from sebamed are tailored to the specific needs of your skin, to sustainably preserve and promote the natural beauty of your face.
Language
en
Canonical
https://sebamed.com/en/info/

Open Graph

url
sebamed.com/en/info/
title
sebamed - the medical skincare with pH 5.5 - sebamed
site name
sebamed Onlineshop International
description
The carefully developed products from sebamed are tailored to the specific needs of your skin, to sustainably preserve and promote the natural beauty of your face.

Technology

Server
HTCServer
CMS
Gatsby
Analytics
  • Google Analytics
  • Google Tag Manager

Third-party hosts loaded (3)

  • www.googletagmanager.com×2
  • cloud.ccm19.de×1
  • www.google-analytics.com×1

Social

Contact

Address
Binger Straße 80, 56154, Bad Salzig, Rheinland-Pfalz, DE

Registration

Registrar
Hetzner Online GmbH
Created
2000-03-13
Expires
2027-03-13 297 days left
Updated
2026-03-11
Name servers
  • ns.second-ns.com
  • ns1.your-server.de
  • ns3.second-ns.de

DNS records live

NS
  • ns.second-ns.com
  • ns1.your-server.de
  • ns3.second-ns.de
MX
  • 10 mailcleaner.hosttec.de
TXT
  • MS=ms58329638

Email authentication weak

SPF
v=spf1 include:spf.mailjet.com mx ~all
softfail (~all)
DMARC
not published
DKIM
no key found at common selectors

Certificate (current)

E7
from 2026-04-04 to 2026-07-03
Expires in 45 days

Full certificate history on crt.sh ↗

HTTP security headers

Header hygiene 80/100 Checked live page: https://sebamed.com/en/

present
  • strict-transport-security
  • content-security-policy
  • x-content-type-options
  • referrer-policy
  • permissions-policy
  • cross-origin-opener-policy
findings
  • CSP allows unsafe inline scripts/styles
  • CSP uses wildcard sources
  • missing frame protection
Header values
referrer-policy
strict-origin-when-cross-origin
permissions-policy
geolocation=(),sync-xhr=(self),microphone=(),camera=(),fullscreen=(self),payment=(self)
x-content-type-options
nosniff
content-security-policy
script-src 'self' 'unsafe-inline' 'unsafe-eval' *.paypal.com *.payments-amazon.com *.ccm19.de *.sitesearch360.com *.doubleclick.net *.etracker.com *.etracker.de *.facebook.net *.flockler.com *.google.com *.googletagmanager.com *.googleapis.com *.gstatic.com *.google-analytics.com *.googleapis.com *.bing.com *.hotjar.com *.clarity.ms *.trustedshops.com *.etrusted.com *.hatraco.net *.hatraco-shop.de *.criteo.com cdn.jsdelivr.net; frame-ancestors 'self' *.etracker.com sebamed.de sebamed.ch sebamed.com; worker-src blob: 'self';
strict-transport-security
max-age=31536000; includeSubDomains
cross-origin-opener-policy
same-origin-allow-popups

Links to (5)

Linked from (2)