weydonmat.co.uk

.uk crawl

First seen 2026-04-14 · Last seen 2026-05-11 · ok HTTP/1.1 200 977 ms crawled 2026-05-07

IE · 34.253.29.31 · AS16509 Amazon.com, Inc.

Reputation 92/100 no dmarc policy

Classifying

HTML metadata

Title: Welcome to Weydon Multi Academy Trust
Description: Weydon Multi Academy Trust is committed to educational excellence, collaboration and opportunity, supporting schools and students to achieve their full potential.
Language: en
Canonical: https://www.weydonmat.co.uk/

Open Graph

url: https://www.weydonmat.co.uk
title: Weydon Multi Academy Trust
description: Our vision is to inspire a community of learners. Together we share good practice from different contexts and in doing so raise standards and performance across all of our Colleges and Schools

Technology

Server: nginx
CMS: Joomla

Social widgets

Vimeo Embed

Third-party hosts loaded (3)

cms-site-files.reactfiles.co.uk×29
fonts.cleverbox.co.uk×1
player.vimeo.com×1

Social

Contact

Email

info@wmat.org.uk

Phone

01252900550

Address

Weydon Lane, GU9 8UG, Farnham, Surrey, GB

Registration

Registrar

Cloudflare, Inc.

Created

2017-04-25

Expires

2027-04-25 339 days left

Updated

2026-04-15

Name servers

kristin.ns.cloudflare.com.
tim.ns.cloudflare.com.

DNS records live

NS

kristin.ns.cloudflare.com
tim.ns.cloudflare.com

MX

1 aspmx.l.google.com
10 alt3.aspmx.l.google.com
10 alt4.aspmx.l.google.com
5 alt1.aspmx.l.google.com
5 alt2.aspmx.l.google.com

Email authentication weak

SPF: v=spf1 +a +mx +a:mail.weydonmat.co.uk +a:linsvr3.domaincheck.co.uk -all
strict (-all)
DMARC: not published
DKIM: no key found at common selectors

Certificate (current)

R13

from 2026-04-25 to 2026-07-24

Expires in 64 days

Full certificate history on crt.sh ↗

HTTP security headers

Header hygiene 85/100 Checked live page: https://www.weydonmat.co.uk/

present

strict-transport-security
content-security-policy
x-frame-options
x-content-type-options
referrer-policy

findings

CSP allows unsafe inline scripts/styles
weak frame protection
missing Permissions Policy

Header values

referrer-policy: strict-origin-when-cross-origin
x-frame-options: SAMEORIGIN, SAMEORIGIN
x-content-type-options: nosniff
content-security-policy: script-src 'nonce-HIS6COnmogTPC18iuk+p1Rqj6CVfSw1H+6aHJpSWP5l5depG7AyDh1hq0celcw==' 'unsafe-inline' 'unsafe-eval' 'strict-dynamic' https: http:; object-src 'none';
strict-transport-security: max-age=31536000;, max-age=63072000; includeSubDomains; preload