webnode.com

HTML metadata

Title

Webnode Website Builder | Build Your Free Website with AI

Description

Create your website instantly with Webnode’s AI Website Builder. Generate text, images, and layout in seconds, or use website templates. Start for free.

Language

en

Canonical

https://www.webnode.com/

Translations

bg
cs
da
de
el
es
fi
fr
hr
hu
it
ja
lv
nl
nn
pl
pt
ro
ru
sk
sv
uk
zh

Open Graph

url: https://www.webnode.com/
title: Webnode Website Builder | Build Your Free Website with AI
site name: Webnode Website Builder | Build Your Free Website with AI

Technology

Server: envoy
CMS: Joomla

Analytics

Google Analytics
Google Tag Manager

Ads

Google Ads (DoubleClick)

Third-party hosts loaded (6)

d1rv23qj5kas56.cloudfront.net×32
www.googletagmanager.com×2
cdn.hub-prod.team.blue×1
googleads.g.doubleclick.net×1
www.google-analytics.com×1
www.gstatic.com×1

Social

Registration

Registrar

Realtime Register B.V.

Created

1999-03-21

Expires

2029-03-21 1037 days left

Updated

2026-01-21

Name servers

ns-13.awsdns-01.com
ns-1517.awsdns-61.org
ns-1582.awsdns-05.co.uk
ns-607.awsdns-11.net

DNS records live

NS

ns-13.awsdns-01.com
ns-1517.awsdns-61.org
ns-1582.awsdns-05.co.uk
ns-607.awsdns-11.net

MX

0 webnode-com.mail.protection.outlook.com

TXT

Show 6 TXT records

MS=ms66586760
atlassian-domain-verification=opvwDPJfnbxUvlPr8C6Egl50d6L3LAgaBv55FC5cKYFPapHg0x58aeBXw6GFcSk5
google-site-verification=FjxN3M_Jg2OUCE17H18mZpzdXCROTX_2DCvNtN_6jyc
google-site-verification=lIvgfplOGU8weRczv2nf-ziwJ0i9xlu5K3PUNKHVwgE
google-site-verification=xn-XtNOmsXdY3gIWTDkkv0FCCGqugkwg8jPMnLl1f80
pinterest-site-verification=9aeb2541c95fdebaeb58ae1b043feda6

Email authentication strong

SPF

v=spf1 a mx include:spf.webnode.com include:spf.protection.outlook.com -all

strict (-all)

DMARC

v=DMARC1; p=reject; pct=100; fo=1; sp=reject; rua=mailto:c449ce75@mxtoolbox.dmarc-report.com; ruf=mailto:c449ce75@forensics.dmarc-report.com

policy: reject (enforced) · sp=reject

DKIM

default: k=rsa; p=MIGfMA0GCSqGSIb3DQEBAQUAA4GNADCBiQKBgQDXM+vsmViU1DYKOcb5GinEOotgeJFndXtvFDT0Ign2XCoyadEMgTkNj9Ydpf+ClvtUaQQdun7iCx9QBVw2mbjmFFjffSD…
selector1: v=DKIM1; k=rsa; p=MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEApfA+z3POE6jXsCyjdZHib8ISLoupE/L+LTxyA5uB7a4l7xuXOMYeze6veqeWJkLv+F3v8WcFWWVwob…
k1: k=rsa; p=MIGfMA0GCSqGSIb3DQEBAQUAA4GNADCBiQKBgQDbNrX2cY/GUKIFx2G/1I00ftdAj713WP9AQ1xir85i89sA2guU0ta4UX1Xzm06XIU6iBP41VwmPwBGRNofhBVR+e6WHUo…

selectors probed

Certificate (current)

R13

from 2026-05-07 to 2026-08-05

Expires in 78 days

Full certificate history on crt.sh ↗

HTTP security headers

Header hygiene 70/100 Checked live page: https://www.webnode.com/

present

strict-transport-security
content-security-policy
x-frame-options

findings

CSP allows unsafe inline scripts/styles
CSP uses wildcard sources
missing content type protection
missing Referrer Policy
missing Permissions Policy

Header values

x-frame-options: DENY
content-security-policy: default-src *;script-src 'self' resource://pdf.js 'unsafe-hashes' 'unsafe-inline' 'unsafe-eval' *.teamblue.services d1rv23qj5kas56.cloudfront.net d3nn3278imm5nr.cloudfront.net d1di2lzuh97fh2.cloudfront.net duyn491kcolsw.cloudfront.net events.webnode.com events.staging.webnode.com events.testing.webnode.com js.stripe.com www.gstatic.com www.googleadservices.com www.googletagmanager.com bat.bing.com bat.bing.net analytics.ahrefs.com/analytics.js connect.facebook.net a.quora.com www.google-analytics.com googleads.g.doubleclick.net c.imedia.cz www.google.com www.google.de www.google.com.br cdn.inspectlet.com *.clarity.ms *.bing.com c.seznam.cz pagead2.googlesyndication.com s.yimg.jp ct.pinterest.com analytics.tiktok.com www.redditstatic.com alb.reddit.com https://cdn.rudderlabs.com/ https://cdn.amplitude.com/ cdn.euc-freshbots.ai blob: euc-widget.freshworks.com/widgets/101000002785.js euc-widget.freshworks.com/widgetBase/ b98.yahoo.co.jp https://s.pinimg.com https://track.adform.net https:
strict-transport-security: max-age=15768000