vichy-spa-hotel.fr

HTML metadata

Technology

CMS

WordPress

Third-party hosts loaded (2)

• unpkg.com×1
• www.google.com×1

Social

• facebook
• instagram
• linkedin

Contact

Email

• info@villasahrai.com

Phone

• +33470308200

Address

Célestins Spa Thermal & Hôtel *****111 boulevard des Etats-Unis03200Vichy+ 33 4 70 30 82 00resa@vy-resort.com

Registration

Registrar

OVH

Created

2009-12-15

Expires

2027-04-04 318 days left

Updated

2026-04-05

Name servers

• dns14.ovh.net
• ns14.ovh.net

DNS records live

NS

• dns14.ovh.net
• ns14.ovh.net

MX

• 10 aspmx.l.google.com
• 20 alt1.aspmx.l.google.com
• 20 alt2.aspmx.l.google.com
• 30 aspmx2.googlemail.com

TXT

• k=rsa; t=y; p=MHswDQYJKoZIhvcNAQEBBQADagAwZwJgt2uP0Q38nEgaz7eGdPLA6hwpN78oGMvYVYRcibcklrMl6tGsviNw0dZ9DGdISigGO3HHmRD77t2w1TV/ZmpSIT6HsBgeCn532KWC0NSf4pk5cGqC//jGGJGr0e3uwhrHAgMBAAE=
• 1|www.vichy-spa-hotel.fr

Verified for

• Google

Email authentication weak

SPF

v=spf1 include:mx.ovh.com -all

strict (-all)

DMARC

not published

DKIM

no key found at common selectors

Certificate (current)

Full certificate history on crt.sh ↗

HTTP security headers

Header hygiene 90/100 Checked live page: https://vichy-spa-hotel.fr/fr/

present

• strict-transport-security
• content-security-policy
• x-frame-options
• x-content-type-options
• referrer-policy
• permissions-policy
• cross-origin-opener-policy
• cross-origin-embedder-policy
• cross-origin-resource-policy

findings

• CSP allows unsafe inline scripts/styles
• CSP uses wildcard sources

Links to (8)

• api-and-you.com×1
• facebook.com×1
• google.com×1
• instagram.com×1
• linkedin.com×1
• secretbox.fr×1
• secure-hotel-booking.com×1
• zenchef.com×1

Linked from (1)

• tiptouch.com×1