toyotasotra.no
toyotasotra.no
HTML metadata
Technology
- Server
- nginx
- CMS
- WordPress
- Analytics
-
- Google Tag Manager
- Fonts
-
- Google Fonts
- Social widgets
-
- Vimeo Embed
Third-party hosts loaded (4)
- cdn-toyota.imgix.net×9
- www.googletagmanager.com×2
- fonts.googleapis.com×1
- player.vimeo.com×1
Contact
- Phone
DNS records live
- NS
-
- domain1.telenor.net
- domain2.telenor.net
- MX
-
- 10 mx.online.no
Email authentication weak
- SPF
- not published
- DMARC
- not published
- DKIM
- no key found at common selectors
Certificate (current)
E8
Expires in 54 days
HTTP security headers
- present
-
- content-security-policy
- x-content-type-options
- findings
-
- missing HSTS
- CSP uses wildcard sources
- missing frame protection
- missing Referrer Policy
- missing Permissions Policy
Header values
- x-content-type-options
nosniff- content-security-policy
default-src 'self';base-uri 'self';worker-src 'self' blob:;connect-src 'self' *.google.com toyotaeurope.tt.omtrdc.net maps.googleapis.com pagead2.googlesyndication.com *.google-analytics.com cdn.mondry.ai cdn.datahub.sempro.ai *.doubleclick.net dpm.demdex.net *.contentsquare.net *.snapchat.com *.algolia.net *.algolianet.com *.algolia.io consentcdn.cookiebot.com api.forhandler.toyota.no api.toyota.test sst.toyota.no cdn.cookielaw.org bat.bing.com www.googleadservices.com;form-action 'self';img-src 'self' data: cdn-toyota.imgix.net s3.eu-north-1.amazonaws.com www.google-analytics.com img.youtube.com toyotaeuropetoyglobalprod.112.2o7.net www.googletagmanager.com prod-api.services.carweb.no test-api.services.carweb.no maps.gstatic.com maps.googleapis.com ade.googlesyndication.com www.facebook.com www.google.com www.google.no ib.adnxs.com *.doubleclick.net cdn.usefathom.com *.contentsquare.net *.snapchat.com cdn.wayke.se imgsct.cookiebot.com bat.bing.com images.ctfassets.net cdn.cookielaw.o