theoutdoormag.it
theoutdoormag.it
HTML metadata
Technology
- Server
- nginx
- CMS
- WordPress
- PHP
- 8.2.29 security-only
- Stack
- PHP
- Analytics
-
- Google Tag Manager
- Ads
-
- Google Ads (DoubleClick)
- Cookie consent
-
- Iubenda
- Fonts
-
- Google Fonts
Third-party hosts loaded (6)
- cdn.iubenda.com×4
- fonts.googleapis.com×2
- insight.adsrvr.org×1
- securepubads.g.doubleclick.net×1
- sp.analytics.yahoo.com×1
- www.googletagmanager.com×1
Contact
DNS records live
- NS
-
- sureena.ns.cloudflare.com
- yevgen.ns.cloudflare.com
- MX
-
- 10 mx.theoutdoormag.it
Email authentication weak
- SPF
- not published
- DMARC
- not published
- DKIM
- no key found at common selectors
Certificate (current)
R12
Expires in 49 days
HTTP security headers
- present
-
- strict-transport-security
- content-security-policy
- x-frame-options
- x-content-type-options
- referrer-policy
- permissions-policy
- cross-origin-opener-policy
- cross-origin-embedder-policy
- cross-origin-resource-policy
- findings
-
- CSP allows unsafe inline scripts/styles
- CSP uses wildcard sources
- weak frame protection
Header values
- referrer-policy
no-referrer-when-downgrade- x-frame-options
sameorigin, SAMEORIGIN- permissions-policy
geolocation=(), midi=(), sync-xhr=(),accelerometer=(), gyroscope=(), magnetometer=(), payment=(), camera=(), microphone=(),usb=(), xr-spatial-tracking=(), speaker-selection=self, fullscreen=self- x-content-type-options
nosniff- content-security-policy
default-src * data: blob: 'unsafe-eval' 'unsafe-inline'- strict-transport-security
max-age=31536000; includeSubdomains, max-age=31536000- cross-origin-opener-policy
same-origin-allow-popups- cross-origin-embedder-policy
unsafe-none- cross-origin-resource-policy
cross-origin