wero-wallet.eu

HTML metadata

Title

Wero - European payment solution

Description

Experience fast and secure digital payments with Wero’s wallet, enabling you to send and receive money between bank accounts in under 10 seconds.

Language

en

Canonical

https://wero-wallet.eu

Translations

en ×2
fr ×2
nl ×2
de

Open Graph

url: https://wero-wallet.eu
title: Wero - European payment solution
description: Experience fast and secure digital payments with Wero’s wallet, enabling you to send and receive money between bank accounts in under 10 seconds.

Technology

Server: nginx
CMS: Nuxt

Analytics

Google Tag Manager
Matomo

Third-party hosts loaded (5)

img.imageboss.me×43
cdn.matomo.cloud×1
epicompany.matomo.cloud×1
js-eu1.hs-scripts.com×1
www.googletagmanager.com×1

Social

Contact

Phone

0755811726

Address

De Lignestraat 13, 1000, Brussels, BE

DNS records live

NS

ns-1195.awsdns-21.org
ns-155.awsdns-19.com
ns-1684.awsdns-18.co.uk
ns-889.awsdns-47.net

MX

0 werowallet-eu01b.mail.protection.outlook.com

Verified for

Google
Microsoft 365

Email authentication strong

SPF

v=spf1 include:spf.protection.outlook.com include:mail.zendesk.com include:143291714.spf08.hubspotemail.net -all

strict (-all)

DMARC

v=DMARC1; p=reject; rua=mailto:dmarc@epicompany.eu; ruf=mailto:dmarc@epicompany.eu; fo=1

policy: reject (enforced)

DKIM

selector1: v=DKIM1; k=rsa; p=MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAyn7gQ0DK3C1LSOESdIJhqL7K3jZ3sRrgt+yl4/JJNXhE7l42NbYJ1qX5QoOKg3xs9GeXRLsMGwPlN9…

selectors probed

Certificate (current)

E7

from 2026-05-12 to 2026-08-10

Expires in 81 days

Full certificate history on crt.sh ↗

HTTP security headers

Header hygiene 80/100 Checked live page: https://wero-wallet.eu/

present

strict-transport-security
content-security-policy
x-frame-options
x-content-type-options
referrer-policy
permissions-policy
cross-origin-opener-policy
cross-origin-embedder-policy
cross-origin-resource-policy

findings

CSP allows unsafe inline scripts/styles
CSP uses wildcard sources
weak frame protection
weak content type protection

Header values

referrer-policy: no-referrer
x-frame-options: SAMEORIGIN, SAMEORIGIN
permissions-policy: camera=(), display-capture=(), fullscreen=(), geolocation=(), microphone=()
x-content-type-options: nosniff, nosniff
content-security-policy: base-uri 'none'; font-src 'self' https: data:; form-action 'self' https://*.wero-wallet.eu https://*.wero-wallet.acceptance.51north.dev; frame-ancestors 'self' https://*.wero-wallet.eu https://*.wero-wallet.acceptance.51north.dev https://*.matomo.cloud https://start.werouat.eu https://*.werouat.eu; img-src 'self' data: https: blob: https://*.wero-wallet.eu https://*.wero-wallet.acceptance.51north.dev; object-src 'none'; script-src-attr 'none'; style-src 'self' 'unsafe-inline' https://*.wero-wallet.eu https://*.wero-wallet.acceptance.51north.dev; script-src 'self' https: 'nonce-9vFUdOp/mwyKud5dpABp4GxJ'; upgrade-insecure-requests; default-src https:; connect-src https: data: https://*.zendesk.com https://*.zdassets.com https://start.werouat.eu https://*.werouat.eu wss://*.zendesk.com; frame-src 'self' https://*.wero-wallet.eu https://*.wero-wallet.acceptance.51north.dev https://start.werouat.eu https://*.werouat.eu https://*.youtube.com https://*.vimeo.com https://*.zendesk.com https://
strict-transport-security: max-age=31536000; includeSubDomains; preload
cross-origin-opener-policy: same-origin-allow-popups
cross-origin-embedder-policy: unsafe-none
cross-origin-resource-policy: same-origin