indexo.dev

upmbiochemicals.com

.com crawl

First seen 2026-04-13 · Last seen 2026-05-07 · ok HTTP/1.1 200 3485 ms crawled 2026-05-07

SE · 217.114.94.2 · AS30811 Optimizely AB

Reputation 95/100 weak security headers

Classifying

HTML metadata

Title
UPM Biochemicals | UPM Biochemicals
Description
We are building the world's first biorefinery in Leuna, Germany. Our biochemicals are made from responsibly sourced hardwood and have a radically improved CO2 footprint compared to fossil-based alternatives.
Language
en
Canonical
https://www.upmbiochemicals.com/
Translations
  • de
  • en
  • ja

Open Graph

url
https://www.upmbiochemicals.com/
title
UPM Biochemicals
site name
UPM Biochemicals | UPM Biochemicals
description
We are building the world's first biorefinery in Leuna, Germany. Our biochemicals are made from responsibly sourced hardwood and have a radically improved CO2 footprint compared to fossil-based alternatives.

Technology

CDN
Cloudflare
CMS
Gatsby

Social

Registration

Registrar
CSC Corporate Domains, Inc.
Created
2007-12-11
Expires
2026-12-11 206 days left
Updated
2025-12-07
Name servers
  • ns.domainnetwork.se
  • ns2.domainnetwork.se

DNS records live

NS
  • ns.domainnetwork.se
  • ns2.domainnetwork.se
TXT
  • sending_domain1068192=da6f129b7af57ad119b953e281ecd88ec0315cd7b5ce258f2a1b59106973ed46
  • pardot1068192=685addeb4c1397d5d788a96add8ac268ff5e02df44cbc078cc872ceeb8f0c1ec

Email authentication no MX

SPF
not published
DMARC
v=DMARC1; p=quarantine; rua=mailto:dmarc@upm-kymmene.com; ruf=mailto:dmarc@upm-kymmene.com; pct=100; fo=1
policy: quarantine
DKIM
no key found at common selectors

Certificate (current)

WE1
from 2026-04-21 to 2026-07-20
Expires in 62 days

Full certificate history on crt.sh ↗

HTTP security headers

Header hygiene 45/100 Checked live page: https://www.upmbiochemicals.com/

present
  • content-security-policy
  • referrer-policy
findings
  • missing HSTS
  • CSP allows unsafe inline scripts/styles
  • CSP uses wildcard sources
  • missing frame protection
  • missing content type protection
  • missing Permissions Policy
Header values
referrer-policy
no-referrer-when-downgrade
content-security-policy
default-src 'self' blob:; script-src 'self' 'unsafe-inline' 'unsafe-eval' data: blob: googletagmanager.com tagmanager.google.com *.googletagmanager.com www.googleadservices.com www.google.com pagead2.googlesyndication.com googleads.g.doubleclick.net *.typekit.net *.episerver.net zefzhat.appspot.com *.hotjar.com *.hotjar.io *.google-analytics.com analytics.google.com code.jquery.com az416426.vo.msecnd.net dc.services.visualstudio.com netdna.bootstrapcdn.com pi.pardot.com syndication.twitter.com sjs.bizographics.com connect.facebook.net stats.livezhat.com *.ads.linkedin.com www.linkedin.com s.ytimg.com *.googleapis.com googleapis.com api.siteattention.com cdn.syndication.twimg.com flockler.com embed-cdn.flockler.com static.flockler.com fl-cdn.scdn1.secure.raxcdn.com cdn.datatables.net *.licdn.com www.youtube.com gateway.zscloud.net viewer.blipstar.com static.handpickedcherries.com maxcdn.bootstrapcdn.com rules.quantcount.com secure.quantserve.com apps.myzef.com tools.eurolandir.com webcc

Links to (4)

Linked from (1)