xtraflavors.com

.com crawl

First seen 2026-04-22 · Last seen 2026-05-16 · ok HTTP/1.1 200 2268 ms crawled 2026-05-16

CA · 23.227.38.65 · AS13335 Cloudflare, Inc.

Reputation 92/100 no dmarc policy

ecommerce

HTML metadata

Title: XTRA VAPE - Leading disposable vape brand in the world – XTRA FLAVORS
Description: Over 15 supreme flavors across 5+ devices for the adult smoker. Disposable vape, e-cig, 5000 puffs, 800 puffs, 6000 puffs and other brands like Kief Vapor. Discover the best premium disposable vapes by XTRA VAPE today!
Language: en
Canonical: https://xtraflavors.com/

Open Graph

url: https://xtraflavors.com/
title: XTRA VAPE - Leading disposable vape brand in the world
site name: XTRA FLAVORS
description: Over 15 supreme flavors across 5+ devices for the adult smoker. Disposable vape, e-cig, 5000 puffs, 800 puffs, 6000 puffs and other brands like Kief Vapor. Discover the best premium disposable vapes by XTRA VAPE today!

Technology

CDN: Cloudflare
CMS: Shopify

Analytics

Google Tag Manager

Fonts

Google Fonts

Third-party hosts loaded (4)

fonts.googleapis.com×3
fonts.gstatic.com×1
monorail-edge.shopifysvc.com×1
www.googletagmanager.com×1

Social

Contact

Phone

+13109994756

Registration

Registrar

GoDaddy.com, LLC

Created

2020-12-28

Expires

2029-12-28 1318 days left

Updated

2025-01-15

Name servers

ns71.domaincontrol.com
ns72.domaincontrol.com

DNS records live

NS

ns71.domaincontrol.com
ns72.domaincontrol.com

MX

10 mx1.privateemail.com
10 mx2.privateemail.com

TXT

facebook-domain-verification=uvp6pfjae5dfwpm93msnx7n9objft8
MS=ms81419901
google-site-verification=zBKx1yu5MA6IWs5VMIJx9VuhGDVugcnLJOvLp3lBbMs

Email authentication weak

SPF

v=spf1 include:spf.privateemail.com ~all

softfail (~all)

DMARC

not published

DKIM

default: v=DKIM1;k=rsa;p=MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAxxe+tlqPYLnNC1yYBw8cD+9+hi0bBAyPDiIZ2HsRpoleIhoy2OOLJ64XBplkVvZG2UvUzdZAKAQRHycf…

selectors probed

Certificate (current)

from 2026-04-09 to 2026-07-08

Expires in 50 days

Full certificate history on crt.sh ↗

HTTP security headers

Header hygiene 85/100 Checked live page: https://xtraflavors.com/

present

strict-transport-security
content-security-policy
x-frame-options
x-content-type-options

findings

short HSTS max-age
missing Referrer Policy
missing Permissions Policy

Header values

x-frame-options: DENY
x-content-type-options: nosniff
content-security-policy: block-all-mixed-content; frame-ancestors 'none'; upgrade-insecure-requests;
strict-transport-security: max-age=7889238

Links to (5)

Linked from (2)

vapouround.com×2
vapouround.co.uk×1