indexo.dev

vinticards.nl

.nl crawl

First seen 2026-05-11 · Last seen 2026-05-19 · ok HTTP/1.1 200 6485 ms crawled 2026-05-16

US · 172.67.210.29 · AS13335 Cloudflare, Inc.

Reputation 100/100

sector gaming type ecommerce

HTML metadata

Title
Pokémon kaarten kopen – Groot assortiment & scherpe prijzen
Description
Op zoek naar Pokémon-kaarten? Bij Vinticards.nl vind je een ruim assortiment aan booster packs, Elite Trainer Boxen & exclusieve sets.
Generator
Site Kit by Google 1.175.0
Canonical
https://vinticards.nl/
Translations
  • de-at
  • de-de
  • en
  • es
  • fr
  • it
  • nl-be
  • nl-nl
  • pt

Open Graph

url
https://vinticards.nl/
title
Home
locale
nl_NL
site name
VintiCards
description
Op zoek naar Pokémon-kaarten? Bij Vinticards.nl vind je een ruim assortiment aan booster packs, Elite Trainer Boxen & exclusieve sets.

Technology

CDN
Cloudflare
CMS
WordPress
Analytics
  • Google Tag Manager
Fonts
  • Google Fonts
Third-party hosts loaded (13)
  • cdn.jsdelivr.net×3
  • fonts.googleapis.com×2
  • vinticards.be×2
  • www.googletagmanager.com×2
  • fonts.gstatic.com×1
  • integrations.etrusted.com×1
  • vinticards.at×1
  • vinticards.com×1
  • vinticards.de×1
  • vinticards.es×1
  • vinticards.fr×1
  • vinticards.it×1
  • vinticards.pt×1

Social

Contact

Phone

Registration

Registrar
ZXCS
Created
2024-11-23
Updated
2024-12-06
Name servers
  • bruce.ns.cloudflare.com
  • lady.ns.cloudflare.com

DNS records live

NS
  • bruce.ns.cloudflare.com
  • lady.ns.cloudflare.com
TXT
  • brevo-code:a39e9046fdf24bfedd39cfd12c9a9d27

Email authentication no MX

SPF
not published
DMARC
v=DMARC1; p=none; rua=mailto:rua@dmarc.brevo.com
policy: none (monitoring only)
DKIM
no key found at common selectors

Certificate (current)

WE1
from 2026-03-23 to 2026-06-22
Expires in 33 days

Full certificate history on crt.sh ↗

HTTP security headers

Header hygiene 65/100 Checked live page: https://vinticards.nl/

present
  • content-security-policy
  • x-frame-options
  • x-content-type-options
  • referrer-policy
  • permissions-policy
findings
  • missing HSTS
  • CSP allows unsafe inline scripts/styles
  • weak frame protection
  • weak content type protection
Header values
referrer-policy
strict-origin-when-cross-origin
x-frame-options
DENY, SAMEORIGIN
permissions-policy
geolocation=(), microphone=(), camera=()
x-content-type-options
nosniff, nosniff
content-security-policy
default-src 'self'; script-src 'self' 'unsafe-inline' 'unsafe-eval' https://code.jquery.com https://cdn.jsdelivr.net; style-src 'self' 'unsafe-inline' https://code.jquery.com https://cdn.jsdelivr.net; img-src 'self' data: https: http: blob:; font-src 'self' data: https:; worker-src 'self' blob:;

Links to (13)

Linked from (9)