indexo.dev

vidalgolosinas.com

.com crawl

First seen 2026-05-08 · Last seen 2026-05-15 · ok HTTP/1.1 200 6487 ms crawled 2026-05-15

ES · 185.14.57.132 · AS202054 Grupo Sys4net, S.l.

Reputation 92/100 no dmarc policy

Classifying

HTML metadata

Title
Tienda de Chuches Online - Envío Gratis en 24h | Vidal Golosinas
Description
La Tienda de Chuches Online más famosa en España. Compra en Vidal Golosinas tus chucherías recién hechas sin gluten, veganas y más. Envío gratis 24h.
Language
es
Canonical
https://www.vidalgolosinas.com/

Technology

Server
nginx
CMS
Gatsby
Analytics
  • Google Tag Manager
Fonts
  • Google Fonts

Third-party hosts loaded (4)

  • www.googletagmanager.com×3
  • fonts.googleapis.com×1
  • fonts.gstatic.com×1
  • track.adform.net×1

Social

Contact

Address
Av. Gutiérrez Mellado, s/n, 30500, Molina de Segura, ES

Registration

Registrar
Arsys Internet, S.L. dba NICLINE.COM
Created
2007-05-25
Expires
2026-05-25 4 days left
Updated
2025-05-26
Name servers
  • dns41.servidoresdns.net
  • dns42.servidoresdns.net

DNS records live

NS
  • dns41.servidoresdns.net
  • dns42.servidoresdns.net
MX
  • 10 vidalgolosinas-com.mail.protection.outlook.com
Verified for
  • Google
  • Microsoft 365

Email authentication weak

SPF
v=spf1 include:spf.protection.outlook.com -all
strict (-all)
DMARC
not published
DKIM
no key found at common selectors

Certificate (current)

R13
from 2026-04-23 to 2026-07-22
Expires in 62 days

Full certificate history on crt.sh ↗

HTTP security headers

Header hygiene 75/100 Checked live page: https://www.vidalgolosinas.com

present
  • strict-transport-security
  • content-security-policy
  • x-frame-options
  • x-content-type-options
findings
  • CSP allows unsafe inline scripts/styles
  • CSP uses wildcard sources
  • weak frame protection
  • missing Referrer Policy
  • missing Permissions Policy
Header values
x-frame-options
SAMEORIGIN, SAMEORIGIN
x-content-type-options
nosniff
content-security-policy
font-src *.fontawesome.com https://fonts.bunny.net *.alothemes.com *.magepow.com *.googleapis.com *.gstatic.com *.azureedge.net data: 'self' 'unsafe-inline'; form-action pilot-payflowlink.paypal.com www.paypal.com www.sandbox.paypal.com *.redsys.es *.facebook.com 'self' 'unsafe-inline'; frame-ancestors 'self'; frame-src fast.amc.demdex.net *.adobe.com bid.g.doubleclick.net www.paypal.com www.sandbox.paypal.com pilot-payflowlink.paypal.com player.vimeo.com *.youtube.com https://www.google.com/recaptcha/ www.facebook.com connect.facebook.net graph.facebook.com business.facebook.com *.cookiebot.com *.oct8ne.com *.hotjar.com *.spotify.com *.google.com *.pinterest.com *.googletagmanager.com 'self' 'unsafe-inline'; img-src assets.adobedtm.com amcglobal.sc.omtrdc.net dpm.demdex.net cm.everesttech.net *.adobe.com widgets.magentocommerce.com data: www.googleadservices.com www.google-analytics.com googleads.g.doubleclick.net www.google.com bid.g.doubleclick.net analytics.google.com www.googletag
strict-transport-security
max-age=31536000

Links to (9)

Linked from (1)