indexo.dev

sebamed.es

.es crawl

First seen 2026-04-12 · Last seen 2026-05-05 · ok HTTP/1.1 200 2093 ms crawled 2026-05-05

US · 104.18.4.248 · AS13335 Cloudflare, Inc.

Reputation 100/100

sector beauty type homepage

HTML metadata

Title
SEBAMED | Ciencia para una piel sana
Description
SEBAMED, expertos en el cuidado de la piel sensible, con una amplia gama de productos específicos con pH5.5 de la piel sana, dermatológicamente testados.
Language
es
Generator
Drupal 10 (https://www.drupal.org)
Canonical
https://www.sebamed.es/
Translations
  • es

Technology

CDN
Cloudflare
CMS
Drupal
Analytics
  • Google Tag Manager
Fonts
  • Adobe Fonts
  • Font Awesome

Third-party hosts loaded (5)

  • s3.eu-west-3.amazonaws.com×50
  • use.typekit.net×3
  • cdn.jsdelivr.net×2
  • use.fontawesome.com×1
  • www.googletagmanager.com×1

Social

DNS records live

NS
  • kayden.ns.cloudflare.com
  • pam.ns.cloudflare.com
TXT
  • facebook-domain-verification=d301xxmtm919312ua17q21x2j4z5yg
  • google-site-verification=sw3IGMwSC9uc-yHdppV8BNGRZ1Ud1RBhnQKFnfKhu_k
  • google-site-verification=tWTSPcsYrl3QPyLsviSLWSq-i-HtJ8ixskvn_Gqy4D0

Certificate (current)

WE1
from 2026-03-30 to 2026-06-28
Expires in 41 days

Full certificate history on crt.sh ↗

HTTP security headers

Header hygiene 90/100 Checked live page: https://www.sebamed.es/

present
  • strict-transport-security
  • content-security-policy
  • x-frame-options
  • x-content-type-options
  • referrer-policy
  • permissions-policy
findings
  • CSP allows unsafe inline scripts/styles
  • CSP uses wildcard sources
Header values
referrer-policy
no-referrer-when-downgrade
x-frame-options
SAMEORIGIN
permissions-policy
camera=(), fullscreen=self, geolocation=*, microphone=self
x-content-type-options
nosniff
content-security-policy
default-src 'self'; connect-src 'self' *.cookielaw.org *.sebamed.es *.googleapis.com *.typekit.net *.onetrust.com *.outbrain.com *.google-analytics.com www.google.com *.doubleclick.net bam.nr-data.net *.facebook.net *.google.com *.cloudflareinsights.com; font-src 'self' *.gstatic.com *.onetrust.com *.fontawesome.com *.typekit.net; frame-src 'self' *.doubleclick.net *.adsrvr.org; img-src 'self' data: *.doubleclick.net *.cookielaw.org *.googleapis.com *.gstatic.com https://s3.eu-west-3.amazonaws.com *.outbrain.com www.google.com www.google.co.in *.facebook.com *.facebook.net www.googletagmanager.com www.google.es prod-sebamed-spain.perrigocms.com; object-src 'none'; script-src 'self' 'report-sample' 'unsafe-inline' 'unsafe-eval' *.outbrain.com *.cookielaw.org *.facebook.net *.doubleclick.net js.adsrvr.org *.googleapis.com *.onetrust.com *.typekit.net www.googleadservices.com www.googletagmanager.com js-agent.newrelic.com *.clic2buy.com *.google.com *.cloudflareinsights.com cdn.jsdelivr.n
strict-transport-security
max-age=31536000; includeSubDomains; preload

Links to (7)

Linked from (2)