indexo.dev

veka.fr

.fr crawl

First seen 2026-04-15 · Last seen 2026-05-15 · ok HTTP/1.1 200 2556 ms crawled 2026-05-09

DE · 195.60.107.125 · AS12371 avency GmbH

Reputation 92/100 no dmarc policy

Classifying

HTML metadata

Title
VEKA France | VEKA : concepteur de systèmes de menuiseries PVC
Description
Concepteur de systèmes de menuiseries PVC design et sur-mesure. Design, qualité et performance pour créer avec vous de meilleurs espaces de vie.
Language
fr
Canonical
https://www.veka.fr/
Translations
  • fr

Open Graph

title
VEKA : concepteur de systèmes de menuiseries PVC
site name
VEKA France
description
Concepteur de systèmes de menuiseries PVC design et sur-mesure. Design, qualité et performance pour créer avec vous de meilleurs espaces de vie.

Technology

CDN
Amazon CloudFront
Server
CloudFront
CMS
Nuxt
Cookie consent
  • Usercentrics

Third-party hosts loaded (2)

  • vekaprod-media.e-spirit.cloud×11
  • app.usercentrics.eu×1

Social

Contact

Phone
Address
avenue des Genévriers 74200

Registration

Registrar
AVENCY GmbH
Created
1998-06-23
Expires
2026-07-10 50 days left
Updated
2025-08-31
Name servers
  • ns.kunden.de
  • sec.avency.de
  • theopolis.avency.de

DNS records live

NS
  • ns.kunden.de
  • sec.avency.de
  • theopolis.avency.de
MX
  • 10 spool.mail.gandi.net
  • 50 fb.mail.gandi.net
TXT
  • _t1d1btitf87446i68y1lfqx735afzx3
Verified for
  • GlobalSign

Email authentication weak

SPF
not published
DMARC
not published
DKIM
no key found at common selectors

Certificate (current)

R13
from 2026-03-23 to 2026-06-21
Expires in 32 days

Full certificate history on crt.sh ↗

HTTP security headers

Header hygiene 90/100 Checked live page: https://www.veka.fr/

present
  • strict-transport-security
  • content-security-policy
  • x-frame-options
  • x-content-type-options
  • referrer-policy
  • permissions-policy
  • cross-origin-opener-policy
  • cross-origin-embedder-policy
  • cross-origin-resource-policy
findings
  • CSP allows unsafe inline scripts/styles
  • CSP uses wildcard sources
Header values
referrer-policy
same-origin
x-frame-options
SAMEORIGIN
permissions-policy
camera=(), display-capture=(), fullscreen=(), geolocation=(), microphone=()
x-content-type-options
nosniff
content-security-policy
base-uri 'none'; font-src 'self' https: data: fonts.gstatic.com; form-action 'self' https://*.hsforms.com; frame-ancestors *.e-spirit.hosting; img-src https: data: 'self' *.googleapis.com *.gstatic.com *.google.com *.googleusercontent.com; object-src 'none'; script-src-attr 'none'; style-src 'self' https: 'unsafe-inline' https://fonts.googleapis.com; script-src 'self' https: 'unsafe-inline' 'strict-dynamic' 'nonce-nHUP0i0QR5Y+a2Vri1DgIxnC' 'unsafe-eval' blob: *.e-spirit.cloud app.usercentrics.eu f.vimeocdn.com gstatic.com; upgrade-insecure-requests; media-src https: data: 'self' blob:; script-src-elem 'self' https: 'unsafe-inline' 'strict-dynamic' 'nonce-nHUP0i0QR5Y+a2Vri1DgIxnC' 'unsafe-eval' blob: *.e-spirit.cloud app.usercentrics.eu f.vimeocdn.com gstatic.com; frame-src *.google.com https:; connect-src https: 'self' *.gigya.com https://*.googleapis.com *.google.com https://*.gstatic.com data: blob:; worker-src blob:;
strict-transport-security
max-age=63072000; includeSubDomains; preload
cross-origin-opener-policy
same-origin
cross-origin-embedder-policy
unsafe-none
cross-origin-resource-policy
same-origin

Links to (5)

Linked from (1)