thibautdesign.com

HTML metadata

Title: Thibaut | Designer Wallpaper, Fabric, Trim, Rugs, & Furniture
Description: Discover luxury wallpaper, fabric, rugs, and fine furniture from Thibaut. Browse our collections of designer wallcoverings and textiles for elegant interiors.
Language: en
Canonical: https://www.thibautdesign.com

Open Graph

url: https://www.thibautdesign.com
title: Thibaut | Designer Wallpaper, Fabric, Trim, Rugs, & Furniture
locale: en_US
site name: Thibaut
description: Discover luxury wallpaper, fabric, rugs, and fine furniture from Thibaut. Browse our collections of designer wallcoverings and textiles for elegant interiors.

Technology

CDN: Cloudflare
CMS: Shopify

Analytics

Google Tag Manager

Fonts

Google Fonts

Third-party hosts loaded (8)

cdn.shopify.com×91
cdn.builder.io×2
fonts.googleapis.com×2
www.googletagmanager.com×2
cdn.dashhudson.com×1
fonts.gstatic.com×1
shop.app×1
static.klaviyo.com×1

Social

Contact

Email

Phone

Address

1095 Morris Ave, Suite 450, 07083, Union, NJ, US

Registration

Registrar

Register.com - Network Solutions, LLC

Created

2002-10-02

Expires

2027-10-02 500 days left

Updated

2025-09-02

Name servers

algin.ns.cloudflare.com
sandy.ns.cloudflare.com

DNS records live

NS

algin.ns.cloudflare.com
sandy.ns.cloudflare.com

MX

10 thibautdesign-com.mail.protection.outlook.com

TXT

Show 5 TXT records

shopify-verification-code=JgFWFoz9r430q4xwBlCABa7zF08p66
MS=ms18370725
as=1548966827
google-site-verification=gE7gSxDYjCOUL4TKjJ4XohplcT7wqJJccR4VFU5_meY
klaviyo-site-verification=VHKtvv

Email authentication partial

SPF

v=spf1 include:spf.protection.outlook.com include:dnsexit.com include:authsmtp.com ip4:142.44.136.190 ip4:15.204.142.138 ip4:208.185.229.45 include:spf.us.exclaimer.net -all

strict (-all)

DMARC

v=DMARC1; p=none; rua=mailto:840a26dd6db64a0ea2f09f53d3c6354d@dmarc-reports.cloudflare.net;

policy: none (monitoring only)

DKIM

default: v=DKIM1; k=rsa; t=s; p=MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAoUlVjZc2iEWwjfj359SzEkJIeQcz7SxTWo4Rblh8FDWJ2H3QTf2w7bQO7OB6hmugp4rV96Gaz…
selector2: v=DKIM1; k=rsa; p=MIGfMA0GCSqGSIb3DQEBAQUAA4GNADCBiQKBgQCj+GOvbBbW52EWLpc9oW6h23Uik/cng7diLwsedtV0y9s7ICR4RBi1Gpf2P0ptp/R72LwKvsy88UFUJ3H3Pn…

selectors probed

Certificate (current)

WE1

from 2026-04-07 to 2026-07-06

Expires in 48 days

Full certificate history on crt.sh ↗

HTTP security headers

Header hygiene 70/100 Checked live page: https://www.thibautdesign.com/

present

strict-transport-security
content-security-policy
x-content-type-options

findings

CSP allows unsafe inline scripts/styles
CSP uses wildcard sources
missing frame protection
missing Referrer Policy
missing Permissions Policy

Header values

x-content-type-options: nosniff
content-security-policy: base-uri 'self'; default-src 'self' 'nonce-68d0ef789228abe6f269bd9efa68b879' https://cdn.shopify.com https://shopify.com; frame-ancestors 'none'; style-src 'self' 'unsafe-inline' https://fonts.googleapis.com https://cdn.shopify.com https://cdn.builder.io https://*.typekit.net https://*.klaviyo.com 'self' 'unsafe-inline' https://cdn.shopify.com; connect-src 'self' https://*.datadoghq.com https://browser-intake-datadoghq.com https://*.browser-intake-datadoghq.com https://*.googletagmanager.com https://*.google-analytics.com https://*.google.com https://*.doubleclick.net https://*.googlesyndication.com https://www.google.nl https://www.google.cl https://www.google.co.uk https://www.google.de https://www.google.fr https://www.google.ca https://www.google.com.au https://*.klaviyo.com https://*.pinterest.com https://s.pinimg.com https://cdn.builder.io https://*.dashhudson.com https://api.likeshop.me https://*.facebook.com https://*.facebook.net https://js.zi-scripts.com https://ws.zoominfo.c
strict-transport-security: max-age=31536000