sonepar.es

HTML metadata

Title

Bienvenido a Sonepar en España

Description

Sonepar es líder en la distribución B2B en los sectores industrial, residencial y terciario. Contamos con 158 puntos de venta en España.

Language

es

Generator

Powered by WPBakery Page Builder - drag and drop page builder for WordPress.

Canonical

https://sonepar.es/

Feeds

Open Graph

url: https://sonepar.es/
title: Bienvenido a Sonepar en España
locale: es_ES
site name: Sonepar Spain
description: Sonepar es líder en la distribución B2B en los sectores industrial, residencial y terciario. Contamos con 158 puntos de venta en España.

Technology

Server: nginx
CMS: WordPress

Fonts

Google Fonts

Third-party hosts loaded (2)

fonts.googleapis.com×11
gmpg.org×1

Social

Contact

Phone

DNS records live

NS

ns1099.ui-dns.biz
ns1099.ui-dns.com
ns1099.ui-dns.de
ns1099.ui-dns.org

MX

10 de-smtp-inbound-1.mimecast.com
10 de-smtp-inbound-2.mimecast.com

TXT

globalsign-domain-verification=CD585CC5081894CD5BE86AF06105879B
Dynatrace-site-verification=24c3bafd-34f3-41e6-a4db-9acb561cb3f6__n0v1cf9ubat3b4tmjuckal9fa1
google-site-verification=sidy5WKxWvuxi5OYOgvj6VUHVaqMsmsbbt0-4Gd_Hfs

Email authentication strong

SPF

v=spf1 include:spf1.sonepar.es include:spf2.sonepar.es include:spf3.sonepar.es include:spf4.sonepar.es include:spf5.sonepar.es -all

strict (-all)

DMARC

v=DMARC1; p=reject; fo=1; rua=mailto:697a89261ead030@rep.dmarcanalyzer.com; ruf=mailto:697a89261ead030@rep.dmarcanalyzer.com

policy: reject (enforced)

DKIM

k2: v=DKIM1; k=rsa; p=MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAv2aC2KjGKLOwTweBY5A9RpjsxaBXR9r7OAU6U8/zn92ivImI75naUujWbItRI/QmL1jy5PWGqLwoUA…
s1: k=rsa; t=s; p=MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAnCg3OUejQBUf2e2wTnSObogoSpbu/hA1TxpQ/DsH2ecCQq5ozBh3vEIpSkAvaDWDcmxKUAJkUTv3d5zGeR…
s2: k=rsa; t=s; p=MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAzD6PNOjm+IYGfvrtx4hYFfgw1x5iWnjPUYhHP7165uUZR5tiRv3D/QQCy8EhtLAhXBQHZgtiabBE/WEaao…

selectors probed

Certificate (current)

GlobalSign Atlas R3 DV TLS CA 2026 Q1

from 2026-02-19 to 2026-05-20

Expires in 0 days

Full certificate history on crt.sh ↗

HTTP security headers

Header hygiene 85/100 Checked live page: https://sonepar.es/

present

strict-transport-security
content-security-policy
x-frame-options
x-content-type-options
referrer-policy
permissions-policy

findings

CSP allows unsafe inline scripts/styles
CSP uses wildcard sources
weak frame protection

Header values

referrer-policy: same-origin
x-frame-options: ALLOW-FROM https://tienda.sonepar.es/
permissions-policy: geolocation=(self);midi=(none);notifications=(self);push=(self);sync-xhr=(self);microphone=(none);camera=(none);magnetometer=(none);gyroscope=(none);speaker=(none);vibrate=(none);fullscreen=(self);payment=(none);
x-content-type-options: nosniff
content-security-policy: default-src 'self' blob:; style-src 'self' 'unsafe-inline' *.sonepar.es ajax.googleapis.com fonts.googleapis.com *.nextuser.com *.assets.plesk.com ; script-src 'self' 'unsafe-eval' 'unsafe-inline' *.msecnd.net *.google.com *.nextuser.com *.googletagmanager.com maps.googleapis.com *.gstatic.com *.googleapis.com *.google.com *.google-analytics.com *.static.ads-twitter.com *.googletagmanager.com *.googleadservices.com *.analytics.twitter.com *.youtube.com *.doubleclick.net *.facebook.net *.hs-scripts.com js.hsforms.net js.hs-banner.com js.hs-analytics.net js.hsleadflows.net cdn.speedcurve.com; font-src 'self' data: *.sonepar.es *.sonibetica.es netdna.bootstrapcdn.com fonts.gstatic.com *.googleapis.com *.assets.plesk.com; img-src 'self' sonibetica.es *.sonepar.es data: *.sonepar.es *.sonibetica.es *.google.es *.facebook.com *.google.com *.google-analytics.com *.googletagmanager.com *.analytics.twitter.com *.linkedin.com *.doubleclick.net * *.amazonaws.com *.twitter.com *.facebook.net *.y
strict-transport-security: max-age=31536000; includeSubDomains; preload