| Header Name | Header Data |
|---|---|
| HTTP status code | 200 |
| Pragma | cache |
| Date | Mon, 07 Apr 2025 14:32:45 GMT |
| Cache-Control | no-store, no-cache, must-revalidate, max-age=0 |
| X-Platform-Server | i-0c09243ea22fe4463 |
| X-Timer | S1744031306.257922,VS0,VE840 |
| X-Served-By | cache-chi-kigq8000124-CHI, cache-chi-kigq8000057-CHI, cache-ams21034-AMS |
| Accept-Ranges | bytes |
| Age | 5058 |
| X-Cache-Hits | 0, 66, 0 |
| Vary | Accept-Encoding,Cookie |
| Connection | keep-alive |
| X-Xss-Protection | 1; mode=block |
| Expires | Tue, 08 Apr 2025 13:08:26 GMT |
| Strict-Transport-Security | max-age=31557600 |
| X-Content-Type-Options | nosniff |
| X-Frame-Options | SAMEORIGIN |
| Content-Type | text/html; charset=UTF-8 |
| Content-Security-Policy-Report-Only | font-src *.googleapis.com fonts.gstatic.com *.fontawesome.com use.typekit.net *.mountain.com *.typekit.net wordpress.mosherco.biz data: 'self' 'unsafe-inline'; form-action geostag.cardinalcommerce.com geo.cardinalcommerce.com 1eafstag.cardinalcommerce.com 1eaf.cardinalcommerce.com centinelapistag.cardinalcommerce.com centinelapi.cardinalcommerce.com pilot-payflowlink.paypal.com www.paypal.com www.sandbox.paypal.com testsecureacceptance.cybersource.com secureacceptance.cybersource.com 0merchantacsstag.cardinalcommerce.com merchantacs.cardinalcommerce.com https://seo.mageplaza.com *.google.com *.mountain.com *.cardinalcommerce.com *.paypal.com 3ds-secure.cardcomplete.com www.clicksafe.lloydstsb.com pay.activa-card.com *.wirecard.com acs.sia.eu *.touchtechpayments.com www.securesuite.co.uk rsa3dsauth.com *.monzo.com *.arcot.com *.wlp-acs.com * wordpress.mosherco.biz 'self' 'unsafe-inline'; frame-ancestors wordpress.mosherco.biz 'self'; frame-src fast.amc.demdex.net *.adobe.com geostag.cardinalcommerce.com geo.cardinalcommerce.com 1eafstag.cardinalcommerce.com 1eaf.cardinalcommerce.com centinelapistag.cardinalcommerce.com centinelapi.cardinalcommerce.com bid.g.doubleclick.net *.youtube.com *.youtube-nocookie.com www.paypal.com www.sandbox.paypal.com pilot-payflowlink.paypal.com player.vimeo.com https://www.google.com/recaptcha/ *.online-metrix.net testflex.cybersource.com flex.cybersource.com testsecureacceptance.cybersource.com secureacceptance.cybersource.com pay.google.com sandbox.secure.checkout.visa.com secure.checkout.visa.com thm.visa.com sandbox.src.mastercard.com merchantacs.cardinalcommerce.com 0merchantacsstag.cardinalcommerce.com *.brsrvr.com bsapi-w.brsrvr.com *.powerreviews.com nbf2021.my.site.com *.my.salesforce-scrt.com c.paypal.com checkout.paypal.com assets.braintreegateway.com *.cardinalcommerce.com *.paypal.com * *.typekit.net wordpress.mosherco.biz 'self' 'unsafe-inline'; img-src assets.adobedtm.com amcglobal.sc.omtrdc.net dpm.demdex.net cm.everesttech.net *.adobe.com widgets.magentocommerce.com data: www.googleadservices.com www.google-analytics.com googleads.g.doubleclick.net www.google.com bid.g.doubleclick.net analytics.google.com www.googletagmanager.com *.ftcdn.net *.behance.net t.paypal.com www.paypal.com www.paypalobjects.com fpdbs.paypal.com fpdbs.sandbox.paypal.com *.vimeocdn.com i.ytimg.com *.youtube.com validator.swagger.io *.googleapis.com *.gstatic.com *.brsrvr.com *.bloomreach.cloud www.gstatic.com sandbox.secure.checkout.visa.com secure.checkout.visa.com sandbox-assets.secure.checkout.visa.com assets.secure.checkout.visa.com thm.visa.com https://www.magezon.com s7d9.scene7.com maps.gstatic.com maps.googleapis.com p.brsrvr.com *.mountain.com 3.21.189.22 172.31.16.67 *.wordpress.mosherco.biz www.sandbox.paypal.com b.stats.paypal.com dub.stats.paypal.com assets.braintreegateway.com c.paypal.com checkout.paypal.com *.paypal.com wordpress.mosherco.biz data: 'self' 'unsafe-inline'; script-src assets.adobedtm.com *.adobe.com geostag.cardinalcommerce.com 1eafstag.cardinalcommerce.com geoapi.cardinalcommerce.com 1eafapi.cardinalcommerce.com songbird.cardinalcommerce.com includestest.ccdc02.com www.googleadservices.com www.google-analytics.com googleads.g.doubleclick.net analytics.google.com www.googletagmanager.com *.newrelic.com *.nr-data.net www.paypal.com www.sandbox.paypal.com www.paypalobjects.com t.paypal.com s.ytimg.com www.googleapis.com vimeo.com www.vimeo.com *.vimeocdn.com *.youtube.com https://www.gstatic.com/recaptcha/ https://www.google.com/recaptcha/ *.googleapis.com *.gstatic.com cdn.brcdn.com *.online-metrix.net testflex.cybersource.com flex.cybersource.com pay.google.com x.klarnacdn.net sandbox.secure.checkout.visa.com secure.checkout.visa.com sandbox-assets.secure.checkout.visa.com assets.secure.checkout.visa.com thm.visa.com sandbox.src.mastercard.com centinelapistag.cardinalcommerce.com centinelapi.cardinalcommerce.com *.kaptcha.com *.dxpapi.com *.brsrvr.com bsapi-w.brsrvr.com *.powerreviews.com https://*.adobe.com https://*.cardinalcommerce.com https://www.googleadservices.com https://www.google-analytics.com *.googletagmanager.com https://*.newrelic.com https://*.nr-data.net https://*.paypal.com https://*.gstatic.com https://*.powerreviews.com https://*.brcdn.com https://cdn.ywxi.net https://*.braintreegateway.com https://*.typekit.net https://*.my.salesforce-scrt.com *.brcdn.com ui.powerreviews.com nbf2021.my.site.com maps.googleapis.com solutions.invocacdn.com encor11130.pcapredict.com *.paypal.com *.paypalobjects.com pnapi.invoca.net *.mountain.com *.wordpress.mosherco.biz *.my.salesforce-scrt.com s7d9.scene7.com js.braintreegateway.com assets.braintreegateway.com c.paypal.com api.braintreegateway.com api.sandbox.braintreegateway.com client-analytics.braintreegateway.com client-analytics.sandbox.braintreegateway.com songbirdstag.cardinalcommerce.com *.typekit.net wordpress.mosherco.biz https://ui.powerreviews.com 'self' 'unsafe-inline' 'unsafe-eval'; style-src *.adobe.com fonts.googleapis.com *.fontawesome.com fonts.googleapis.com/ use.typekit.net p.typekit.net ui.powerreviews.com *.powerreviews.com *.mountain.com *.wordpress.mosherco.biz *.typekit.net unsafe-inline assets.braintreegateway.com wordpress.mosherco.biz 'self' 'unsafe-inline'; object-src 'self' 'unsafe-inline'; media-src *.adobe.com wordpress.mosherco.biz 'self' 'unsafe-inline'; manifest-src 'self' 'unsafe-inline'; connect-src dpm.demdex.net amcglobal.sc.omtrdc.net geostag.cardinalcommerce.com geo.cardinalcommerce.com 1eafstag.cardinalcommerce.com 1eaf.cardinalcommerce.com centinelapistag.cardinalcommerce.com centinelapi.cardinalcommerce.com www.google-analytics.com www.googleadservices.com analytics.google.com www.googletagmanager.com *.newrelic.com *.nr-data.net vimeo.com www.sandbox.paypal.com www.paypalobjects.com www.paypal.com pilot-payflowlink.paypal.com *.googleapis.com *.dxpapi.com thm.visa.com *.kaptcha.com api.addressy.com *.brsrvr.com *.bsapi-w.brsrvr.com *.powerreviews.com ui.powerreviews.com maps.googleapis.com *.mountain.com api.braintreegateway.com api.sandbox.braintreegateway.com client-analytics.braintreegateway.com client-analytics.sandbox.braintreegateway.com *.braintree-api.com *.paypal.com *.cardinalcommerce.com *.google.com google.com *.typekit.net wordpress.mosherco.biz 'self' 'unsafe-inline'; child-src assets.braintreegateway.com c.paypal.com *.paypal.com wordpress.mosherco.biz http: https: blob: 'self' 'unsafe-inline'; default-src *.powerreviews.com *.scene7.com *.mountain.com wordpress.mosherco.biz 'self' 'unsafe-inline' 'unsafe-eval'; base-uri 'self' 'unsafe-inline'; |
| X-Cache | MISS, HIT, HIT |
| X-Debug-Info | eyJyZXRyaWVzIjowfQ== |
| Traceresponse | 00-18340b3b96ccd0b2a4325c004b209f04-1d30575f2a8c0efc-01 |
By using SecurityHeaders.info, you can quickly identify missing or misconfigured headers and take steps to secure your website, improving both security and user confidence.
This tool is widely used by developers, security professionals, and organizations to ensure their websites adhere to best practices in web security.
We also have another analytic tool that is used for identifying popularity metrics, general information about the business, finding similar products and competitors, and much more.
Watch it now at TrustRadar