upperleft.be

.be crawl

First seen 2026-05-31 · Last seen 2026-06-01 · ok HTTP/1.1 200 954 ms crawled 2026-06-01

BE · 62.213.219.21 · AS8368 Dstny BE N.V.

Reputation 92/100 no dmarc policy

sector real estate type homepage

HTML metadata

Title: Wonen op niveau | Upperleft
Language: nl
Canonical: http://www.upperleft.be/wonen-op-niveau

Technology

jQuery: 2.2.4 known XSS (<3.5)

Social widgets

Vimeo Embed

Third-party hosts loaded (5)

ajax.googleapis.com×1
cdnjs.cloudflare.com×1
maps.googleapis.com×1
player.vimeo.com×1
www.youtube.com×1

Social

Contact

Address: Leopold de Waelplaats 26, 2000, Antwerp, Belgium

DNS records live

NS

ns1.firstserved.net
ns2.firstserved.net
ns3.firstserved.net

MX

10 mx.kinamo.be

Verified for

Meta

Email authentication weak

SPF: not published
DMARC: not published
DKIM: no key found at common selectors

Certificate (current)

R12

from 2026-05-21 to 2026-08-19

Expires in 77 days

Full certificate history on crt.sh ↗

HTTP security headers

Header hygiene 90/100 Checked live page: https://www.upperleft.be/wonen-op-niveau/

present

strict-transport-security
content-security-policy
x-frame-options
x-content-type-options
referrer-policy
permissions-policy

findings

CSP allows unsafe inline scripts/styles
CSP uses wildcard sources

Header values

referrer-policy: no-referrer
x-frame-options: SAMEORIGIN
permissions-policy: accelerometer=(), ambient-light-sensor=(), battery=(), camera=(), display-capture=(), geolocation=(), gyroscope=(), keyboard-map=(), magnetometer=(), microphone=(), midi=(), payment=(), picture-in-picture=(), screen-wake-lock=(), usb=(), web-share=(), xr-spatial-tracking=()
x-content-type-options: nosniff
content-security-policy: default-src 'self'; connect-src *; font-src * data:; frame-src *; img-src * data:; media-src *; object-src *; script-src * 'unsafe-inline' 'unsafe-eval'; style-src * 'unsafe-inline';
strict-transport-security: max-age=31536000

Links to (7)

Linked from (3)