volkswagen-sachsen.de
volkswagen-sachsen.de
HTML metadata
Technology
Third-party hosts loaded (2)
- assets.volkswagen.com×1
- vw-tam.lighthouselabs.eu×1
Registration
- Updated
- 2026-02-13
- Name servers
-
- ns1.volkswagen.de.
- ns2.volkswagen.de.
- ns3.volkswagen.de.
- ns4.volkswagen.de.
DNS records live
- NS
-
- ns1.volkswagen.de
- ns2.volkswagen.de
- ns3.volkswagen.de
- ns4.volkswagen.de
Email authentication no MX
- SPF
-
v=spf1 mx -allstrict (-all) - DMARC
-
v=DMARC1;p=reject;aspf=s;rua=mailto:dmarc.rua@vwgroup.com;ruf=mailto:dmarc.ruf@vwgroup.compolicy: reject (enforced) - DKIM
- no key found at common selectors
Certificates
Loading certificate
HTTP security headers
- present
-
- strict-transport-security
- content-security-policy
- x-frame-options
- x-content-type-options
- findings
-
- CSP allows unsafe inline scripts/styles
- CSP uses wildcard sources
- missing Referrer Policy
- missing Permissions Policy
Header values
- x-frame-options
SAMEORIGIN- x-content-type-options
nosniff- content-security-policy
default-src https: 'unsafe-eval' 'unsafe-inline'; script-src https: 'unsafe-eval' 'unsafe-inline'; style-src https: 'unsafe-eval' 'unsafe-inline'; img-src https: data: blob: *; media-src https: data: blob: *; object-src 'none'; frame-ancestors 'none'; connect-src * data: blob: ; base-uri 'self'; upgrade-insecure-requests; font-src https: 'unsafe-inline' data: 'unsafe-inline'; worker-src * blob:;- strict-transport-security
max-age=31557600