thewoodennickel.net

HTML metadata

Title: The Wooden Nickel - Custom Live Edge Furniture
Description: Our Craftmenship is 100% top quality! Our Products are made in the USA. We guarantee your satisfaction.
Language: en-us
Canonical: https://www.thewoodennickel.net/

Open Graph

url: https://thewoodennickel.net
title: The Wooden Nickel Custom Live Edge Furniture Manufacturer
site name: The Wooden Nickel
description: Our goal is to create your visions, such as Dining Tables, Stools, Sofa Tables, etc, . All Live Edge Furniture is made from kiln dried wood. Each piece we make has a buffalo nickel embedded in some location. Wooden Nickel offers a wide variety of different species of wood, and custom designed bases of metal or wood for an industrial look. We welcome any custom design and size.

Technology

Server: Apache
jQuery: 1.7.1 known XSS (<3.5)

Analytics

Google Tag Manager

Ads

Meta Pixel

Fonts

Google Fonts

Third-party hosts loaded (7)

fonts.googleapis.com×4
www.googletagmanager.com×3
ajax.googleapis.com×2
www.prostarplanet.com×2
connect.facebook.net×1
www.google.com×1
www.prostarseo.net×1

Social

Contact

Phone

Address

235 Guntersville Rd, 35016, Arab, AL, US

Registration

Registrar

GoDaddy.com, LLC

Created

2020-03-03

Expires

2027-03-03 274 days left

Updated

2026-03-04

Name servers

ns15.domaincontrol.com
ns16.domaincontrol.com

DNS records live

NS

ns15.domaincontrol.com
ns16.domaincontrol.com

MX

0 mailstore1.secureserver.net
10 smtp.secureserver.net

TXT

D7050713

Email authentication weak

SPF: not published
DMARC: not published
DKIM: no key found at common selectors

Certificate (current)

R13

from 2026-04-05 to 2026-07-04

Expires in 33 days

Full certificate history on crt.sh ↗

HTTP security headers

Header hygiene 65/100 Checked live page: https://www.thewoodennickel.net/

present

content-security-policy
x-frame-options
x-content-type-options
referrer-policy

findings

missing HSTS
CSP allows unsafe inline scripts/styles
CSP uses wildcard sources
missing Permissions Policy

Header values

referrer-policy: strict-origin-when-cross-origin
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
content-security-policy: default-src 'self'; base-uri 'self'; object-src 'none'; frame-ancestors 'self'; script-src 'self' 'unsafe-inline' 'unsafe-eval' https://accounts.google.com https://apis.google.com https://www.prostarplanet.com https://prostarplanet.com https://www.prostarseo.net https://www.googletagmanager.com https://www.google-analytics.com https://connect.facebook.net https://www.youtube.com https://www.youtube-nocookie.com https://player.vimeo.com https://www.clarity.ms https://clarity.ms https://scripts.clarity.ms https://www.google.com https://www.gstatic.com https://www.recaptcha.net https://cdnjs.cloudflare.com https://maps.googleapis.com https://maps.gstatic.com https://cdn.tiny.cloud https://formoid.net https://*.formoid.net; script-src-elem 'self' 'unsafe-inline' https://accounts.google.com https://apis.google.com https://www.prostarplanet.com https://prostarplanet.com https://www.prostarseo.net https://www.googletagmanager.c