indexo.dev

villarrealcf.es

.es crawl

First seen 2026-04-11 · Last seen 2026-05-19 · ok HTTP/1.1 200 1968 ms crawled 2026-05-18

NL · 146.190.27.6 · AS14061 DigitalOcean, LLC

Reputation 95/100 weak security headers

Classifying

HTML metadata

Title
Web Oficial del Villarreal CF – Página web oficial del Villarreal CF. Toda la información del club amarillo con noticias, jugadores, calendario, venta de entradas, tienda online, servicios a los aficionados y abonados.
Language
es-ES
Generator
WPML ver:4.9.2.1 stt:1,2,66;
Canonical
https://villarrealcf.es/
Translations
  • en
  • es
  • val
Feeds

Technology

Server
nginx
CMS
WordPress
Analytics
  • Google Tag Manager
Fonts
  • Google Fonts
Third-party hosts loaded (9)
  • cdn.jsdelivr.net×4
  • cdn.datatables.net×3
  • cdnjs.cloudflare.com×3
  • fonts.googleapis.com×3
  • maps.googleapis.com×2
  • meet.jit.si×2
  • ajax.googleapis.com×1
  • widgets.besoccerapps.com×1
  • www.googletagmanager.com×1

Social

DNS records live

NS
  • dns1.csnet.es
  • dns2.csnet.es
  • dns3.csnet.es
MX
  • 0 villarrealcf-es.mail.protection.outlook.com
TXT
Show 4 TXT records
  • include:_ekvm1.srvdr.com
  • xIePullr
  • linkedin-site-verification=e6547ff8-d1e1-40f2-af08-14f1bd415653
  • 5dce7d1ccfc6866aefa2edebfa5d843a
Verified for
  • Brevo
  • Google
  • Meta

Email authentication strong

SPF
v=spf1 include:spf.protection.outlook.com include:mailgun.org -all
strict (-all)
DMARC
v=DMARC1; p=reject; rua=mailto:7xyo9djf@ag.eu.dmarcadvisor.com; ruf=mailto:7xyo9djf@fr.eu.dmarcadvisor.com;
policy: reject (enforced)
DKIM
Show 4 DKIM selectors
  • selector1: v=DKIM1; k=rsa; p=MIGfMA0GCSqGSIb3DQEBAQUAA4GNADCBiQKBgQC/p33eOYdLAyE5VHYLwle7vVVW0p4bPFMrqMQzlYHlHDv0QGZOTzBB5PsUHR2AI0+BaAtcxwkDvuJao0/LFK…
  • selector2: v=DKIM1; k=rsa; p=MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAuNIVggWjf5ZSqAWriPYxtIwfbiy12ME1mrU5mG+emn0vBvUNTwDwyxUYvhkBQX97Q19nVsSrR/W2or…
  • k2: v=DKIM1; k=rsa; p=MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAv2aC2KjGKLOwTweBY5A9RpjsxaBXR9r7OAU6U8/zn92ivImI75naUujWbItRI/QmL1jy5PWGqLwoUA…
  • mail: k=rsa;p=MIGfMA0GCSqGSIb3DQEBAQUAA4GNADCBiQKBgQDeMVIzrCa3T14JsNY0IRv5/2V1/v2itlviLQBwXsa7shBD6TrBkswsFUToPyMRWC9tbR/5ey0nRBH0ZVxp+lsmTxid2Y2z…
selectors probed

Certificate (current)

E8
from 2026-04-05 to 2026-07-04
Expires in 45 days

Full certificate history on crt.sh ↗

HTTP security headers

Header hygiene 35/100 Checked live page: https://villarrealcf.es/

present
  • permissions-policy
findings
  • missing HSTS
  • missing Content Security Policy
  • missing frame protection
  • missing content type protection
  • missing Referrer Policy
Header values
permissions-policy
private-state-token-redemption=(self "https://www.google.com" "https://www.gstatic.com" "https://recaptcha.net" "https://challenges.cloudflare.com" "https://hcaptcha.com"), private-state-token-issuance=(self "https://www.google.com" "https://www.gstatic.com" "https://recaptcha.net" "https://challenges.cloudflare.com" "https://hcaptcha.com")

Links to (13)

Linked from (4)