visitwroclaw.eu
visitwroclaw.eu
HTML metadata
Technology
- Server
- nginx
- CMS
- WordPress
- PHP
- 8.3.30 security-only
- jQuery
- 3.7.1
- Analytics
-
- Google Tag Manager
- Fonts
-
- Adobe Fonts
Third-party hosts loaded (6)
- visitwroclaw.s3.eu-central-1.amazonaws.com×80
- www.google.com×2
- api.allaccessible.org×1
- gmpg.org×1
- use.typekit.net×1
- www.googletagmanager.com×1
Social
DNS records live
- NS
-
- ns-1494.awsdns-58.org
- ns-1991.awsdns-56.co.uk
- ns-417.awsdns-52.com
- ns-633.awsdns-15.net
Email authentication no MX
- SPF
- not published
- DMARC
- not published
- DKIM
- no key found at common selectors
Certificate (current)
Amazon RSA 2048 M04
Expires in 209 days
HTTP security headers
- present
-
- content-security-policy
- findings
-
- missing HSTS
- CSP allows unsafe inline scripts/styles
- missing frame protection
- missing content type protection
- missing Referrer Policy
- missing Permissions Policy
Header values
- content-security-policy
script-src 'self' data: blob: 'unsafe-inline' 'unsafe-eval' https://cdn.jsdelivr.net/npm/swiper@11/swiper-bundle.min.js https://visitwroclaw.eu/dist/ https://visitwroclaw.s3.eu-central-1.amazonaws.com https://cdn.jsdelivr.net/npm/lightbox2@2/dist/js/lightbox.min.js https://visitwroclaw.lama-media.com/; img-src 'self' data: blob: https://secure.gravatar.com/avatar/ https://app.allaccessible.org/ https://s.w.org/images/core/emoji/ https://visitwroclaw.eu/wp-content/themes/visitwroclaw/assets/ https://visitwroclaw.s3.eu-central-1.amazonaws.com/ https://visitwroclaw.lama-media.com/; object-src 'self' data: blob: https://visitwroclaw.lama-media.com/; frame-src 'self' data: blob: https://visitwroclaw.lama-media.com/;