HTTP Headers report for confused.com

Header Name	Header Data
HTTP status code	200
Expires	-1
Content-Security-Policy	object-src 'self'; upgrade-insecure-requests; report-uri https://reporturi.confused.com/csp
Alt-Svc	h3=":443"; ma=86400
Connection	keep-alive
Age	455
Permissions-Policy	payment=()
Request-Context	appId=cid-v1:c15c8895-2676-4423-9de8-e83467afa7bc
X-App-Environment	pr-eun
X-Xss-Protection	1; mode=block
Server	cloudflare
Access-Control-Expose-Headers	Request-Context
Strict-Transport-Security	max-age=31536000; includeSubDomains; preload
Nel	{"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
Vary	Accept-Encoding
Referrer-Policy	no-referrer-when-downgrade
X-Content-Type-Options	nosniff
Set-Cookie	request_id=92ca1d9b393a6645; Path=/; Domain=.confused.com; SameSite=Lax; Secure; HttpOnly;
Content-Type	text/html; charset=utf-8
Cf-Ray	92ca1d9b393a6645-AMS
Cache-Control	no-cache, no-store
Link	</static/scripts/cmsv2/v24.0.33/cms2.min.js>; rel=preload; as=script, </static/content/cms/v52.0.51/main.min.css>; rel=preload; as=style, </static/content/fonts/poppins/regular/Poppins-Regular.woff2>; rel=preload; as=font; type=font/woff2; crossorigin, </static/content/fonts/poppins/semi-bold/Poppins-SemiBold.woff2>; rel=preload; as=font; type=font/woff2; crossorigin, </static/scripts/libs/jquery-3.6.0.min.js>; rel=preload; as=script, <https://sst.confused.com/push?node=HFZH>; rel=preload; as=script, </static/scripts/cmsv2/v24.0.33/cms2-nav.min.js>; rel=preload; as=script, </static/content/cms/v52.0.51/header.min.css>; rel=preload; as=style, </static/content/cms/v52.0.51/cookie.min.css>; rel=preload; as=style, </static/scripts/cmsv2/v24.0.33/cms2-mi.min.js>; rel=preload; as=script, </static/scripts/cmsv2/v24.0.33/cms2-cookies.min.js>; rel=preload; as=script
X-Frame-Options	SAMEORIGIN
Report-To	{"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=BuInBgFtxW08koqBijebqActFNnqzsUvISMXZRGfTUI5fCgg714zBddKf4YmmTLbDWxBkWA3O2mpc5atg5ewyEgzAs6fip276L4RE4sv9k8GV8kNQMbuPHilG5Q%2BcYrc5fI%3D"}],"group":"cf-nel","max_age":604800}
Date	Mon, 07 Apr 2025 14:11:42 GMT
Last-Modified	Mon, 07 Apr 2025 13:44:52 GMT
Pragma	no-cache
X-Appversion	CMS.Confused.WEBAPP.main.2025.80
X-Clacks-Overhead	GNU Graham Schultz
Cf-Cache-Status	HIT

About the tool

By using SecurityHeaders.info, you can quickly identify missing or misconfigured headers and take steps to secure your website, improving both security and user confidence.

This tool is widely used by developers, security professionals, and organizations to ensure their websites adhere to best practices in web security.

We also have another analytic tool that is used for identifying popularity metrics, general information about the business, finding similar products and competitors, and much more.

Watch it now at TrustRadar