virtuelleshaus.at
HTML metadata
Technology
- CDN
- Vercel
- Analytics
-
- Google Tag Manager
Third-party hosts loaded (2)
- analytics.ff.works×1
- www.googletagmanager.com×1
Social
Contact
- Phone
DNS records live
- NS
-
- dns1.a1.net
- dns2.a1.net
- dns3.a1.net
- MX
-
- 0 virtuelleshaus-at.mail.protection.outlook.com
- TXT
-
bl0dotmp0ccpjce70p0cu2av9k
- Verified for
-
- Microsoft 365
Email authentication weak
- SPF
-
v=spf1 include:spf.protection.outlook.com -allstrict (-all) - DMARC
- not published
- DKIM
- no key found at common selectors
Certificate (current)
R13
Expires in 84 days
HTTP security headers
- present
-
- strict-transport-security
- content-security-policy
- x-frame-options
- x-content-type-options
- referrer-policy
- permissions-policy
- cross-origin-opener-policy
- findings
-
- CSP allows unsafe inline scripts/styles
- CSP uses wildcard sources
Header values
- referrer-policy
strict-origin-when-cross-origin- x-frame-options
SAMEORIGIN- permissions-policy
geolocation=(), microphone=(), camera=()- x-content-type-options
nosniff- content-security-policy
default-src * 'unsafe-inline' 'unsafe-eval' data: blob:; script-src * 'unsafe-inline' 'unsafe-eval'; style-src * 'unsafe-inline'; img-src * data: blob:; media-src * data: blob:; font-src * data:; connect-src *; frame-src *; object-src *; base-uri *; form-action *; frame-ancestors *- strict-transport-security
max-age=31536000; includeSubDomains; preload- cross-origin-opener-policy
same-origin
Links to (15)
Linked from (3)
- dih-ost.at×1
- nahedhatahet.eu×1
- v4u.at×1