swiatlowodotwarty.pl
swiatlowodotwarty.pl
HTML metadata
Technology
- Server
- DWS
- CMS
- WordPress 7.0
- Analytics
-
- Google Tag Manager
- Cookie consent
-
- Usercentrics
Third-party hosts loaded (3)
- web.cmp.usercentrics.eu×2
- gmpg.org×1
- www.googletagmanager.com×1
Social
DNS records live
- NS
-
- dns1.tld.pl
- dns2.tld.pl
- dns3.tld.pl
- MX
-
- 10 swiatlowodotwarty-pl.mail.protection.outlook.com
- TXT
-
Show 15 TXT records
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
- Verified for
-
- Atlassian
- Microsoft 365
Email authentication partial
- SPF
-
v=spf1 include:spf.protection.outlook.com -allstrict (-all) - DMARC
-
v=DMARC1; p=none; rua=mailto:dmarc_agg@vali.emailpolicy: none (monitoring only) - DKIM
-
- selector1:
v=DKIM1; k=rsa; p=MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA1U5cD7QcWIx8JW2CBZitx6r0Pnp2LLOM0k5qk+OWkdNEvmbYB/3c7uCC0moG4t1ouQvsXEZu13B+3N…
selectors probed - selector1:
Certificate (current)
Certum DV TLS G2 R39 CA
Expires in 277 days
HTTP security headers
- present
-
- strict-transport-security
- content-security-policy
- x-frame-options
- x-content-type-options
- referrer-policy
- permissions-policy
- findings
-
- CSP allows unsafe inline scripts/styles
- CSP uses wildcard sources
Header values
- referrer-policy
strict-origin-when-cross-origin- x-frame-options
SAMEORIGIN- permissions-policy
accelerometer=(), autoplay=(), camera=(), cross-origin-isolated=(), display-capture=(), encrypted-media=(), fullscreen=(), geolocation=(), gyroscope=(), keyboard-map=(), magnetometer=(), microphone=(), midi=(), payment=(), picture-in-picture=(), publickey-credentials-get=(), screen-wake-lock=(), usb=(), xr-spatial-tracking=()- x-content-type-options
nosniff- content-security-policy
default-src 'self'; script-src 'self' 'unsafe-inline' cdn.cookielaw.org *.usercentrics.eu *.recaptcha.net *.googletagmanager.com *.google.com *.doubleclick.net maps.googleapis.com *.googlesyndication.com unpkg.com *.gstatic.com *.facebook.net *.google-analytics.com; frame-src *.swiatlowodotwarty.pl *.recaptcha.net *.youtube.com youtu.be *.vimeo.com www.google.com www.googletagmanager.com *.erecruiter.pl; style-src 'self' 'unsafe-inline' https:; img-src 'self' data: cdn.cookielaw.org *.usercentrics.eu *.googleapis.com *.google-analytics.com *.google.com *.googlesyndication.com *.google.pl *.gstatic.com *.doubleclick.net *.facebook.net *.facebook.com *.googletagmanager.com *.recaptcha.net; font-src 'self' data: https:; connect-src 'self' *.swiatlowodotwarty.pl cdn.cookielaw.org *.usercentrics.eu *.doubleclick.net *.facebook.com *.google-analytics.com *.googleadservices.com *.google.com *.google.pl *.googlesyndication.com *.googletagmanager.com *.googleapis.com *.erecruiter.pl *.recaptcha- strict-transport-security
max-age=31536000; includeSubDomains; preload