viajescolsubsidio.com
HTML metadata
Technology
- jQuery
- 1.3.2 known XSS (<3.5)
- Analytics
-
- Google Tag Manager
- Fonts
-
- Google Fonts
Third-party hosts loaded (9)
- d14xsmsn4vzz2n.cloudfront.net×6
- dnnprod.s3.amazonaws.com×2
- fonts.googleapis.com×2
- cdnjs.cloudflare.com×1
- code.iconify.design×1
- fonts.gstatic.com×1
- static.placetopay.com×1
- www.facebook.com×1
- www.googletagmanager.com×1
Social
Contact
Registration
- Registrar
- Hello Internet Corp
- Created
- 2021-04-19
- Expires
- 2028-04-19 699 days left
- Updated
- 2026-04-07
- Name servers
-
- nameserver01.mi.com.co
- nameserver02.mi.com.co
- nameserver03.mi.com.co
- nameserver04.mi.com.co
DNS records live
- NS
-
- nameserver01.mi.com.co
- nameserver02.mi.com.co
- nameserver03.mi.com.co
- nameserver04.mi.com.co
Email authentication no MX
- SPF
- not published
- DMARC
- not published
- DKIM
- no key found at common selectors
Certificate (current)
R12
Expires in 82 days
HTTP security headers
- present
-
- strict-transport-security
- content-security-policy
- x-frame-options
- x-content-type-options
- referrer-policy
- permissions-policy
- findings
-
- CSP allows unsafe inline scripts/styles
- CSP uses wildcard sources
Header values
- referrer-policy
same-origin- x-frame-options
SAMEORIGIN- permissions-policy
geolocation=(), microphone=(), camera=(), payment=(), usb=(), accelerometer=(), gyroscope=(), magnetometer=(), fullscreen=(self)- x-content-type-options
nosniff- content-security-policy
default-src 'self' https: localhost:* 'unsafe-inline' 'unsafe-eval'; img-src * data:; media-src * data:; connect-src https: wss:;- strict-transport-security
max-age=31536000; includeSubDomains; preload