| Header Name | Header Data |
|---|---|
| HTTP status code | 200 |
| Date | Tue, 08 Apr 2025 10:36:03 GMT |
| Connection | keep-alive |
| Content-Security-Policy | font-src wild.hikeorders.com a11yenablerapi.hikeorders.com jsappcdn.hikeorders.com *.affirm.com api.affirm.com cdn1.affirm.com sandbox.affirm.com api-cf.affirm.com cdn-assets.affirm.com *.listrakbi.com recscont.listrakbi.com s.listrakbi.com mediacdn.espssl.com s1.listrakbi.com s2.listrakbi.com sca1.listrakbi.com sca2.listrakbi.com st.listrakbi.com product.listrakbi.com oc.listrakbi.com cdn.listrakbi.com at1.listrakbi.com al1.listrakbi.com recs.listrakbi.com onescript-recscont.listrakbi.com m1.listrakbi.com idx.listrakbi.com bl.listrakbi.com barcode.listrakbi.com da1.listrakbi.com fp.listrakbi.com webhooks.listrakbi.com cntrecsprd.listrakbi.com *.elitefts.com stage.elitefts.com www.elitefts.com *.cloudflare.com *.bootstrapcdn.com *.gstatic.com *.paypalobjects.com www.paypalobjects.com *.fontawesome.com https://fonts.bunny.net data: 'self' 'unsafe-inline'; form-action geostag.cardinalcommerce.com geo.cardinalcommerce.com 1eafstag.cardinalcommerce.com 1eaf.cardinalcommerce.com centinelapistag.cardinalcommerce.com centinelapi.cardinalcommerce.com pilot-payflowlink.paypal.com www.paypal.com www.sandbox.paypal.com wild.hikeorders.com a11yenablerapi.hikeorders.com jsappcdn.hikeorders.com *.affirm.com api.affirm.com cdn1.affirm.com sandbox.affirm.com api-cf.affirm.com cdn-assets.affirm.com *.listrakbi.com recscont.listrakbi.com s.listrakbi.com mediacdn.espssl.com s1.listrakbi.com s2.listrakbi.com sca1.listrakbi.com sca2.listrakbi.com st.listrakbi.com product.listrakbi.com oc.listrakbi.com cdn.listrakbi.com at1.listrakbi.com al1.listrakbi.com recs.listrakbi.com onescript-recscont.listrakbi.com m1.listrakbi.com idx.listrakbi.com bl.listrakbi.com barcode.listrakbi.com da1.listrakbi.com fp.listrakbi.com webhooks.listrakbi.com cntrecsprd.listrakbi.com *.elitefts.com stage.elitefts.com www.elitefts.com *.facebook.com *.paypalobjects.com www.paypalobjects.com *.cardinalcommerce.com *.paypal.com 3ds-secure.cardcomplete.com www.clicksafe.lloydstsb.com pay.activa-card.com *.wirecard.com acs.sia.eu *.touchtechpayments.com www.securesuite.co.uk rsa3dsauth.com *.monzo.com *.arcot.com *.wlp-acs.com * *.authorize.net 'self' 'unsafe-inline'; frame-ancestors *.authorize.net www.elitefts.com 'self'; frame-src fast.amc.demdex.net *.adobe.com bid.g.doubleclick.net *.youtube.com *.youtube-nocookie.com geostag.cardinalcommerce.com geo.cardinalcommerce.com 1eafstag.cardinalcommerce.com 1eaf.cardinalcommerce.com centinelapistag.cardinalcommerce.com centinelapi.cardinalcommerce.com www.paypal.com www.sandbox.paypal.com pilot-payflowlink.paypal.com player.vimeo.com https://www.google.com/recaptcha/ *.affirm.com *.affirm.ca wild.hikeorders.com a11yenablerapi.hikeorders.com jsappcdn.hikeorders.com api.affirm.com cdn1.affirm.com sandbox.affirm.com api-cf.affirm.com cdn-assets.affirm.com *.listrakbi.com recscont.listrakbi.com s.listrakbi.com mediacdn.espssl.com s1.listrakbi.com s2.listrakbi.com sca1.listrakbi.com sca2.listrakbi.com st.listrakbi.com product.listrakbi.com oc.listrakbi.com cdn.listrakbi.com at1.listrakbi.com al1.listrakbi.com recs.listrakbi.com onescript-recscont.listrakbi.com m1.listrakbi.com idx.listrakbi.com bl.listrakbi.com barcode.listrakbi.com da1.listrakbi.com fp.listrakbi.com webhooks.listrakbi.com cntrecsprd.listrakbi.com *.elitefts.com stage.elitefts.com www.elitefts.com *.cloudflare.com *.twitter.com *.fontawesome.com *.addthis.com *.facebook.net *.facebook.com *.googletagmanager.com *.google.com *.chimpstatic.com chimpstatic.com *.moatads.com *.omappapi.com a.omappapi.com *.opmnstr.com *.addthisedge.com *.doubleclick.net *.mailchimp.com mc.us1.list-manage.com *.googleapis.com *.libsyn.com html5-player.libsyn.com *.paypalobjects.com www.paypalobjects.com c.paypal.com checkout.paypal.com assets.braintreegateway.com pay.google.com *.cardinalcommerce.com *.paypal.com * *.authorize.net *.wesupply.xyz https://wesupplylabs.com *.weltpixel.com 'self' 'unsafe-inline'; img-src assets.adobedtm.com amcglobal.sc.omtrdc.net dpm.demdex.net cm.everesttech.net *.adobe.com widgets.magentocommerce.com data: www.googleadservices.com www.google-analytics.com googleads.g.doubleclick.net www.google.com bid.g.doubleclick.net analytics.google.com www.googletagmanager.com *.ftcdn.net *.behance.net t.paypal.com www.paypal.com www.paypalobjects.com fpdbs.paypal.com fpdbs.sandbox.paypal.com *.vimeocdn.com i.ytimg.com *.youtube.com validator.swagger.io *.affirm.com *.affirm.ca ebizmarts-website.s3.amazonaws.com downloads.mailchimp.com gallery.mailchimp.com wild.hikeorders.com a11yenablerapi.hikeorders.com jsappcdn.hikeorders.com api.affirm.com cdn1.affirm.com sandbox.affirm.com api-cf.affirm.com cdn-assets.affirm.com *.listrakbi.com recscont.listrakbi.com s.listrakbi.com mediacdn.espssl.com s1.listrakbi.com s2.listrakbi.com sca1.listrakbi.com sca2.listrakbi.com st.listrakbi.com product.listrakbi.com oc.listrakbi.com cdn.listrakbi.com at1.listrakbi.com al1.listrakbi.com recs.listrakbi.com onescript-recscont.listrakbi.com m1.listrakbi.com idx.listrakbi.com bl.listrakbi.com barcode.listrakbi.com da1.listrakbi.com fp.listrakbi.com webhooks.listrakbi.com cntrecsprd.listrakbi.com *.elitefts.com stage.elitefts.com www.elitefts.com *.cloudflare.com *.facebook.com *.doubleclick.net *.omappapi.com *.google.com *.gravatar.com *.paypalobjects.com https://firebasestorage.googleapis.com www.sandbox.paypal.com b.stats.paypal.com dub.stats.paypal.com assets.braintreegateway.com c.paypal.com checkout.paypal.com *.paypal.com *.gstatic.com data: 'self' 'unsafe-inline'; script-src assets.adobedtm.com *.adobe.com www.googleadservices.com www.google-analytics.com googleads.g.doubleclick.net analytics.google.com www.googletagmanager.com *.newrelic.com *.nr-data.net geostag.cardinalcommerce.com 1eafstag.cardinalcommerce.com geoapi.cardinalcommerce.com 1eafapi.cardinalcommerce.com songbird.cardinalcommerce.com includestest.ccdc02.com www.paypal.com www.sandbox.paypal.com www.paypalobjects.com t.paypal.com s.ytimg.com www.googleapis.com vimeo.com www.vimeo.com *.vimeocdn.com *.youtube.com https://www.gstatic.com/recaptcha/ https://www.google.com/recaptcha/ *.affirm.com *.affirm.ca *.chimpstatic.com downloads.mailchimp.com *.list-manage.com js.authorize.net s7.addthis.com wild.hikeorders.com a11yenablerapi.hikeorders.com jsappcdn.hikeorders.com api.affirm.com cdn1.affirm.com sandbox.affirm.com api-cf.affirm.com cdn-assets.affirm.com *.listrakbi.com recscont.listrakbi.com s.listrakbi.com mediacdn.espssl.com s1.listrakbi.com s2.listrakbi.com sca1.listrakbi.com sca2.listrakbi.com st.listrakbi.com product.listrakbi.com oc.listrakbi.com cdn.listrakbi.com at1.listrakbi.com al1.listrakbi.com recs.listrakbi.com onescript-recscont.listrakbi.com m1.listrakbi.com idx.listrakbi.com bl.listrakbi.com barcode.listrakbi.com da1.listrakbi.com fp.listrakbi.com webhooks.listrakbi.com cntrecsprd.listrakbi.com *.elitefts.com stage.elitefts.com www.elitefts.com *.cloudflare.com *.twitter.com *.fontawesome.com *.addthis.com *.facebook.net *.googletagmanager.com *.google.com chimpstatic.com *.moatads.com *.omappapi.com a.omappapi.com *.opmnstr.com *.addthisedge.com *.doubleclick.net *.mailchimp.com *.cdn-connect.net *.google-analytics.com *.googleapis.com *.gstatic.com *.instagram.com *.paypalobjects.com *.avada.io js.braintreegateway.com assets.braintreegateway.com c.paypal.com pay.google.com api.braintreegateway.com api.sandbox.braintreegateway.com client-analytics.braintreegateway.com client-analytics.sandbox.braintreegateway.com *.paypal.com songbirdstag.cardinalcommerce.com *.authorize.net sandbox-assets.secure.checkout.visa.com https://www.googletagmanager.com tagmanager.google.com unpkg.com 'self' 'unsafe-inline' 'unsafe-eval'; style-src *.adobe.com downloads.mailchimp.com wild.hikeorders.com a11yenablerapi.hikeorders.com jsappcdn.hikeorders.com *.affirm.com api.affirm.com cdn1.affirm.com sandbox.affirm.com api-cf.affirm.com cdn-assets.affirm.com *.listrakbi.com recscont.listrakbi.com s.listrakbi.com mediacdn.espssl.com s1.listrakbi.com s2.listrakbi.com sca1.listrakbi.com sca2.listrakbi.com st.listrakbi.com product.listrakbi.com oc.listrakbi.com cdn.listrakbi.com at1.listrakbi.com al1.listrakbi.com recs.listrakbi.com onescript-recscont.listrakbi.com m1.listrakbi.com idx.listrakbi.com bl.listrakbi.com barcode.listrakbi.com da1.listrakbi.com fp.listrakbi.com webhooks.listrakbi.com cntrecsprd.listrakbi.com *.elitefts.com stage.elitefts.com www.elitefts.com *.cloudflare.com *.fontawesome.com *.bootstrapcdn.com *.omappapi.com a.omappapi.com *.googleapis.com *.paypalobjects.com www.paypalobjects.com https://fonts.bunny.net unsafe-inline assets.braintreegateway.com tagmanager.google.com 'self' 'unsafe-inline'; object-src 'self' 'unsafe-inline'; media-src *.adobe.com www.elitefts.com 'self' 'unsafe-inline'; manifest-src 'self' 'unsafe-inline'; connect-src dpm.demdex.net amcglobal.sc.omtrdc.net www.google-analytics.com www.googleadservices.com analytics.google.com www.googletagmanager.com *.newrelic.com *.nr-data.net vimeo.com geostag.cardinalcommerce.com geo.cardinalcommerce.com 1eafstag.cardinalcommerce.com 1eaf.cardinalcommerce.com centinelapistag.cardinalcommerce.com centinelapi.cardinalcommerce.com www.sandbox.paypal.com www.paypalobjects.com www.paypal.com pilot-payflowlink.paypal.com *.affirm.com *.affirm.ca wild.hikeorders.com a11yenablerapi.hikeorders.com jsappcdn.hikeorders.com api.affirm.com cdn1.affirm.com sandbox.affirm.com api-cf.affirm.com cdn-assets.affirm.com *.listrakbi.com recscont.listrakbi.com s.listrakbi.com mediacdn.espssl.com s1.listrakbi.com s2.listrakbi.com sca1.listrakbi.com sca2.listrakbi.com st.listrakbi.com product.listrakbi.com oc.listrakbi.com cdn.listrakbi.com at1.listrakbi.com al1.listrakbi.com recs.listrakbi.com onescript-recscont.listrakbi.com m1.listrakbi.com idx.listrakbi.com bl.listrakbi.com barcode.listrakbi.com da1.listrakbi.com fp.listrakbi.com webhooks.listrakbi.com cntrecsprd.listrakbi.com *.elitefts.com stage.elitefts.com www.elitefts.com *.cloudflare.com *.twitter.com *.fontawesome.com *.addthis.com *.facebook.net *.googletagmanager.com *.chimpstatic.com chimpstatic.com *.moatads.com wss://cdn-connect.net/ *.omappapi.com a.omappapi.com *.opmnstr.com *.addthisedge.com *.doubleclick.net *.mailchimp.com *.google-analytics.com *.paypalobjects.com https://get.geojs.io *.avada.io api.braintreegateway.com api.sandbox.braintreegateway.com client-analytics.braintreegateway.com client-analytics.sandbox.braintreegateway.com *.braintree-api.com *.paypal.com *.cardinalcommerce.com *.google.com google.com *.authorize.net 'self' 'unsafe-inline'; child-src assets.braintreegateway.com c.paypal.com *.paypal.com www.elitefts.com http: https: blob: 'self' 'unsafe-inline'; default-src www.elitefts.com 'self' 'unsafe-inline' 'unsafe-eval'; base-uri 'self' 'unsafe-inline'; |
| X-Xss-Protection | 1; mode=block |
| Vary | Accept-Encoding |
| Expires | Mon, 08 Apr 2024 07:50:44 GMT |
| X-Frame-Options | SAMEORIGIN |
| Server | nginx/1.24.0 |
| Set-Cookie | PHPSESSID=eb073b3d8e7d46fb4e3f938f0a45210a; expires=Wed, 09-Apr-2025 10:36:03 GMT; Max-Age=86400; path=/; domain=.elitefts.com; secure; HttpOnly; SameSite=Lax |
| Pragma | no-cache |
| Cache-Control | max-age=0, must-revalidate, no-cache, no-store |
| X-Content-Type-Options | nosniff |
| Content-Type | text/html; charset=UTF-8 |
| Strict-Transport-Security | max-age=15768000; includeSubDomains |
By using SecurityHeaders.info, you can quickly identify missing or misconfigured headers and take steps to secure your website, improving both security and user confidence.
This tool is widely used by developers, security professionals, and organizations to ensure their websites adhere to best practices in web security.
We also have another analytic tool that is used for identifying popularity metrics, general information about the business, finding similar products and competitors, and much more.
Watch it now at TrustRadar