This website has not got CSP, see: https://securityheaders.io/?q=http%3A%2F%2Fplastflaskor.se%2F&followRedirects=on
& https://observatory.mozilla.org/analyze.html?host=plastflaskor.se
2 vulnerable libraries detected: http://retire.insecurity.today/#!/scan/da4b69b72f0be50c4db30580bb9a4a3b7768bdabdfcaee5559eab70f85bdfe7b
Linked iFrame (missing SRI hashes detected) Linked iFrames
Compromised sites will often contain embedded iframes that can also deliver malicious code to visitors of the web site. Check any discovered iframes and ensure they are legitimate.

-http://postboxen.com/phpAdsNew/www/delivery/afr.php?zoneid=32&cb=INSERT_RANDOM_NUMBER_HERE&ct0=INSERT_CLICKURL_HERE
-http://postboxen.com/phpAdsNew/www/delivery/afr.php?zoneid=61&cb=INSERT_RANDOM_NUMBER_HERE&ct0=INSERT_CLICKURL_HERE

See: http://www.domxssscanner.com/scan?url=http%3A%2F%2Fpostboxen.com%2FphpAdsNew%2Fwww%2Fdelivery%2Fafr.php%3Fzoneid%3D32%26cb%3DINSERT_RANDOM_NUMBER_HERE%26ct0%3DINSERT_CLICKURL_HERE with error in code in line:3: SyntaxError: missing = in XML attribute: Is it an invalid character or a missing closing tag?

polonus (volunteer website security analyst and website error-hunter)