spenglercup.ch
HTML metadata
Technology
- Server
- nginx
- CMS
- Drupal
- Social widgets
-
- YouTube Embed
Third-party hosts loaded (3)
- social.soul.media×9
- ads.soul.media×1
- www.youtube.com×1
Social
Contact
DNS records live
- NS
-
- ns.hostpoint.ch
- ns2.hostpoint.ch
- ns3.hostpoint.ch
- MX
-
- 10 mx1.mail.hostpoint.ch
- 10 mx2.mail.hostpoint.ch
- Verified for
-
Email authentication weak
- SPF
-
v=spf1 redirect=spf.mail.hostpoint.chmissing all - DMARC
- not published
- DKIM
- no key found at common selectors
Certificate (current)
Sectigo Public Server Authentication CA EV R36
Expires in 50 days
HTTP security headers
- present
-
- content-security-policy
- findings
-
- missing HSTS
- CSP allows unsafe inline scripts/styles
- missing frame protection
- missing content type protection
- missing Referrer Policy
- missing Permissions Policy
Header values
- content-security-policy
frame-ancestors 'self' https://backend-preview.spenglercup.ch https://www.youtube.com https://dev.backend.spenglercup.ch/ https://backend.spenglercup.ch https://backend.spenglercup.ddev.site/ https://new.spenglercup.ch https://www.spenglercup.ch https://www.google.com; object-src 'none'; script-src 'self' 'unsafe-inline' 'unsafe-eval' https://ads.soul.media https://cdnjs.cloudflare.com https://analytics.soul.media https://www.google.com https://www.gstatic.com;
Links to (16)
- calanda.com×1
- facebook.com×1
- hcd.ch×1
- hostpoint.ch×1
- instagram.com×1
- linkedin.com×1
- skoda.ch×1
- srf.ch×1
- storen.ch×1
- swisstopevents.ch×1
- swisstopsport.ch×1
- tiktok.com×1
- ubs.ch×1
- wuerth-gruppe.ch×1
- x.com×1
- youtube.com×1