indexo.dev

zsdetska.cz

.cz crawl

First seen 2026-05-31 · Last seen 2026-06-01 · ok HTTP/1.1 200 690 ms crawled 2026-06-01

CZ · 37.235.104.239 · AS39392 SH.cz s.r.o.

Reputation 92/100 no dmarc policy

Classifying

HTML metadata

Title
Základní škola Dětská | Základní škola Dětská
Description
Základní škola Dětská
Language
cs

Open Graph

url
https://www.zsdetska.cz/cs/

Technology

Server
nginx
jQuery
3.3.1 known XSS (<3.5)
Stack
PHP

Third-party hosts loaded (2)

  • cdn.arsy.cz×3
  • api.mapy.cz×1

Social

Contact

Email
Phone

Registration

Registrar
REG-ACTIVE24
Created
2003-04-29
Expires
2027-04-27 328 days left
Updated
2026-01-25
Name servers
  • alfa.ns.active24.cz
  • beta.ns.active24.cz
  • gama.ns.active24.sk

DNS records live

NS
  • alfa.ns.active24.cz
  • beta.ns.active24.cz
  • gama.ns.active24.sk
MX
Show 7 MX records
  • 0 alt1.aspmx.l.google.com
  • 0 alt2.aspmx.l.google.com
  • 0 aspmx.l.google.com
  • 0 aspmx2.googlemail.com
  • 0 aspmx3.googlemail.com
  • 0 aspmx4.googlemail.com
  • 0 aspmx5.googlemail.com
Verified for
  • Microsoft 365

Email authentication weak

SPF
v=spf1 mx a ip4:37.235.104.239 ip6:2a01:28:ca:112::1:2577 ~all
softfail (~all)
DMARC
not published
DKIM
no key found at common selectors

Certificate (current)

E8
from 2026-05-05 to 2026-08-03
Expires in 62 days

Full certificate history on crt.sh ↗

HTTP security headers

Header hygiene 55/100 Checked live page: https://www.zsdetska.cz/cs/

present
  • content-security-policy
  • x-frame-options
  • x-content-type-options
  • referrer-policy
findings
  • missing HSTS
  • CSP allows unsafe inline scripts/styles
  • CSP uses wildcard sources
  • weak frame protection
  • weak content type protection
  • missing Permissions Policy
Header values
referrer-policy
strict-origin-when-cross-origin
x-frame-options
SAMEORIGIN, SAMEORIGIN http://127.0.0.1
x-content-type-options
nosniff, nosniff
content-security-policy
script-src 'self' 'unsafe-inline' 'unsafe-eval' *.arsy.cz http: https: https://cdn.jsdelivr.net; frame-ancestors 'self' https://www.facebook.com/ https://www.messenger.com/ https://*.paypal.com https://*.paypalobjects.com http://127.0.0.1; frame-src 'self' https://*.bakalari.cz https://*.paypal.com https://*.paypalobjects.com https://www.google.com https://eu.zonerama.com/ https://maps.google.com https://www.zbozi.cz https://www.facebook.com/ https://www.googletagmanager.com/ https://cdn.jsdelivr.net https://widget.packeta.com https://backup.widget.packeta.com https://maps.gls-czech.cz https://c.imedia.cz https://td.doubleclick.net https://c.seznam.cz https://cz.im9.cz https://pi-test.sagepay.com https://z.im9.cz https://*.imedia.cz https://b2c.cpost.cz https://*.dpd.cz *.youtube.com https://www.youtube-nocookie.com https://*.inpost.pl; img-src 'self' data: blob: https://*.heureka.cz https://*.arsy.cz https://*.gstatic.com https://*.googleapis.com https://*.pay

Links to (8)

Linked from (1)