zenleafdispensaries.com

HTML metadata

Title: Medical & Recreational Cannabis Dispensaries | Zen Leaf
Description: Welcome to Zen Leaf. We have licensed marijuana dispensaries for both medical and recreational use in several states across the US.
Language: en
Canonical: https://zenleafdispensaries.com

Open Graph

url: https://zenleafdispensaries.com
title: Medical & Recreational Cannabis Dispensaries
locale: en_US
site name: Zen Leaf Dispensaries
description: Discover Zen Leaf Dispensaries for a premium cannabis experience! Expert advice, quality products, and exceptional service await you. Elevate your wellness journey with us.

Technology

CDN: Cloudflare
CMS: WordPress

Analytics

Cloudflare Insights
Google Tag Manager

Fonts

Adobe Fonts

Third-party hosts loaded (4)

api.mapbox.com×2
use.typekit.net×2
static.cloudflareinsights.com×1
www.googletagmanager.com×1

Social

Registration

Registrar

GoDaddy.com, LLC

Created

2017-06-15

Expires

2028-06-15 757 days left

Updated

2023-03-28

Name servers

jade.ns.cloudflare.com
pete.ns.cloudflare.com

DNS records live

NS

jade.ns.cloudflare.com
pete.ns.cloudflare.com

MX

0 zenleafdispensaries-com.mail.protection.outlook.com

TXT

Show 11 TXT records

google-site-verification=d9g__VZy2q2XVnDGj3rvrmjiJzBJyD9TMp_L7eB-Z70
google-site-verification=jkPMP9YNQl-IY9VtodW20f3NbMJHZ1jHaDvy0CtkR7g
google-site-verification=rUSnm_3fbfUsZG3RP_z0ELUEThHFBD-CDd-VkjhBmTo
google-site-verification=w7nK_cU38oRkkEpmB7TS2KdPGhY3qkaihf19cN9Irgg
klaviyo-site-verification=UmkDSh
klaviyo-site-verification=WnTreQ
v=DMARC1; p=reject;
D24909F908
MS=ms64118696
google-site-verification=4Azy7npTUjbfTDBK4FNxFJikAa6xn6qg-WDDJr86B80
google-site-verification=HacY15xLJW0mdWL6Obw8Gh0_mEg58GPWw7I_st21nSY

Email authentication strong

SPF

v=spf1 include:mail.zendesk.com include:spf.protection.outlook.com include:_spf.smtp.com include:sendgrid.net -all

strict (-all)

DMARC

v=DMARC1; p=reject; pct=100; rua=mailto:digital_dmarc@verano.com;

policy: reject (enforced)

DKIM

s1: k=rsa; t=s; p=MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA0NGSBT1P5U75ukafca5lHyAB6lz5VkyMAwL9C07xbBzBxBHcW/hXZYRm3Zgh99OX8xuVSZWnW2eDXQYD5W…
s2: k=rsa; t=s; p=MIGfMA0GCSqGSIb3DQEBAQUAA4GNADCBiQKBgQDhOJebkPSqDDFub598ikpHxwmTti9B2pYZ9J+NsyhJzG0UtyvM7mCJzA0oA36H+CQ1kQFJh6vatvfsKY2hs7191H…

selectors probed

Certificate (current)

E8

from 2026-04-21 to 2026-07-20

Expires in 61 days

Full certificate history on crt.sh ↗

HTTP security headers

Header hygiene 70/100 Checked live page: https://zenleafdispensaries.com/

present

strict-transport-security
content-security-policy
x-content-type-options

findings

CSP allows unsafe inline scripts/styles
CSP uses wildcard sources
missing frame protection
missing Referrer Policy
missing Permissions Policy

Header values

x-content-type-options: nosniff
content-security-policy: default-src 'self'; media-src 'self' https://*.zenleafdispensaries.com zldheadless.wpengine.com sweedzenleaf.wpenginepowered.com secure.gravatar.com zenleafdispstg.wpengine.com adminveranocom.wpengine.com zenleafdispensaries.com uploads-ssl.webflow.com zldheadlessdev.wpengine.com muvzldheadless.local sweedpos.s3.amazonaws.com media.sweedpos.com ;script-src 'self' 'unsafe-inline' 'unsafe-eval' blob: https://*.hotjar.com https://sdk.aeropay.com/ap/aeropay.js https://cdn.moengage.com http://mj-snowplow-static-js.s3.amazonaws.com https://sync.smartadserver.com https://mj-snowplow-static-js.s3.amazonaws.com https://tracking.lqm.io https://cdnjs.cloudflare.com data: https://www.google.com https://qvdt3feo.com https://accounts.google.com/gsi/client https://www.gstatic.com https://appleid.cdn-apple.com https://iheartjane.com https://*.clarity.ms https://fpnpmcdn.net https://www.googletagmanager.com https://www.google-analytics.com https://ajax.googleapis.com https://www.googleapis.com https://
strict-transport-security: max-age=31536000; includeSubDomains; preload

Links to (5)

Linked from (1)

jerseypride.org×2