ultrapower.pl
ultrapower.pl
HTML metadata
Technology
- Server
- nginx
- Analytics
-
- Google Tag Manager
- Cookie consent
-
- Cookiebot
- Fonts
-
- Google Fonts
Third-party hosts loaded (5)
- www.googletagmanager.com×3
- fonts.googleapis.com×2
- consent.cookiebot.com×1
- maxcdn.bootstrapcdn.com×1
- www.facebook.com×1
DNS records live
- NS
-
- ns1.tld.pl
- ns2.tld.pl
- MX
-
- 10 ultrapower.pl
- Verified for
-
Email authentication weak
- SPF
-
v=spf1 include:_spf.mlsend.com a mx include:spf.tld.pl -allstrict (-all) - DMARC
- not published
- DKIM
- no key found at common selectors
Certificate (current)
cyber_Folks
Expires in 165 days
HTTP security headers
- present
-
- strict-transport-security
- content-security-policy
- x-frame-options
- x-content-type-options
- referrer-policy
- permissions-policy
- findings
-
- CSP allows unsafe inline scripts/styles
Header values
- referrer-policy
strict-origin-when-cross-origin- x-frame-options
SAMEORIGIN- permissions-policy
geolocation=(), microphone=(), camera=(), magnetometer=(), gyroscope=(), payment=()- x-content-type-options
nosniff- content-security-policy
default-src 'self' 'unsafe-inline' 'unsafe-eval' https: data:; img-src 'self' https: data:; font-src 'self' https://fonts.gstatic.com https://use.fontawesome.com data:; frame-src 'self' https://www.youtube.com https://www.facebook.com;- strict-transport-security
max-age=31536000; includeSubDomains; preload