vulnz.net

.net crawl

First seen 2026-04-30 · Last seen 2026-05-19 · ok HTTP/1.1 200 2299 ms crawled 2026-05-08

GB · 185.53.58.194 · AS12488 Krystal Hosting Ltd

Reputation 100/100

Classifying

HTML metadata

Title: Vulnz | Vulnerability monitoring for WordPress professionals
Description: Monitor WordPress websites with a super-lightweight agent plugin, and powerful zero-click reporting. Freelancers, agencies and WP hosters.
Language: en-GB
Canonical: https://vulnz.net/

Open Graph

url: https://vulnz.net/
title: Vulnz | Vulnerability monitoring for WordPress professionals
locale: en_GB
site name: vulnz
description: Monitor WordPress websites with a super-lightweight agent plugin, and powerful zero-click reporting. Freelancers, agencies and WP hosters.

Technology

Server: Apache
CMS: WordPress

Third-party hosts loaded (1)

fonts.bunny.net×4

Contact

Phone

2026-04-21 13

Registration

Registrar

123-Reg Limited

Created

2025-12-06

Expires

2026-12-06 199 days left

Updated

2025-12-06

Name servers

ns25.domaincontrol.com
ns26.domaincontrol.com

DNS records live

NS

ns25.domaincontrol.com
ns26.domaincontrol.com

MX

10 nexus.headwall.co.uk

Email authentication strong

SPF

v=spf1 include:_spf.headwall-hosting.com -all

strict (-all)

DMARC

v=DMARC1; p=quarantine; adkim=r; aspf=r; rua=mailto:dmarc_rua@onsecureserver.net;

policy: quarantine

DKIM

default: v=DKIM1; t=s; p=MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAxoG4P7tC9cpCwsm5K9s8ng2pidHSAHsA6dZigAP/ZkMtvU9O3c80/SI1QwsHbQnK4Dw/iHJbNl1ed/c3…

selectors probed

Certificate (current)

from 2026-04-16 to 2026-07-15

Expires in 56 days

Full certificate history on crt.sh ↗

HTTP security headers

Header hygiene 85/100 Checked live page: https://vulnz.net/

present

strict-transport-security
content-security-policy
x-frame-options
x-content-type-options

findings

CSP allows unsafe inline scripts/styles
missing Referrer Policy
missing Permissions Policy

Header values

x-frame-options: sameorigin
x-content-type-options: nosniff
content-security-policy: script-src 'strict-dynamic' 'nonce-YppFunUvvYXMAVgm0cV7ml5ARG4=' 'unsafe-inline' http: https:; object-src 'none'; base-uri 'none'
strict-transport-security: max-age=31536000; includeSubDomains; preload

Links to (2)

headwall-hosting.com×1
thegreenwebfoundation.org×1

Linked from (1)

headwall-hosting.com×2