Marriott Bug Bounty Program HackerOne
uat.moments.marriottbonvoy.com
Endpoints (2 of 2)
Page 1 of 1
Path
Port
Status Code
Content-Length
Title
Resp Headers
/
443
301
270
Redirecting to /en-us
Location: /en-us
Content-Type: text/html
/
80
301
247
301 Moved Permanently
Location: https://uat.moments.marriottbonvoy.com/
Content-Type: text/html
- Path: /
- Port: 443
- Status Code: 301
- Title: Redirecting to /en-us
-
Date: Thu, 07 Mar 2024 16:58:12 GMT
Vary: Accept-Encoding
Pragma: no-cache
Server: Apache
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Location: /en-us
Expect-Ct: max-age=0
Set-Cookie: PHPSESSID=09ftdtntu7r3o1u11chl1rl5s6; path=/; secure; HttpOnly;HttpOnly;Secure, XSRF-TOKEN=eyJpdiI6IkpDMmJycklEb2ozQktpaE5uVDhoRXc9PSIsInZhbHVlIjoidUlwcXVYYjZaVkFyOXlDUnR1ZkxiRkgrMDR4Qlh1ampyV1RnbGRMdUxYRGRqRlRkeEJSOXpxXC95VXN0dzVLOHREMVRjSDVjQnFmZjBpamNpck5pazNZK3VoZHV6enBraFRoaTV3eWtXMmNaTTRVdkRjMmg4MkF1R1ArUHNuSkZ4IiwibWFjIjoiMjIyMWIwNmRjMjQzOTFlY2Q1ZTA2MTJlMWI3ODNjNjZmZTI2N2E1YmZmOGQ0MjJkOWRiNjM4YTI1ODdmODJmNyJ9; expires=Thu, 07-Mar-2024 18:58:12 GMT; Max-Age=7200; path=/; samesite=lax;HttpOnly;Secure, moments_session=Llw89LXuSTyf7XRWg1ZGVArUZGZvuFBAoYuLA3xV; path=/; httponly; samesite=lax;HttpOnly;Secure
Content-Type: text/html; charset=UTF-8
X-Webkit-Csp: default-src 'self' lacek.hs.llnwd.net; script-src 'self' 'unsafe-inline' 'unsafe-eval' blob: lacek.hs.llnwd.net uat.moments.marriottbonvoy.com platform.twitter.com tms.marriott.com s.pinimg.com smetrics.marriott.com a.tribalfusion.com pixel.mathtag.com s.pinimg.com *.apextag.com *.sojern.com js.adsrvr.org connect.facebook.net analytics.lacek.net *.truste.com *.trustarc.com localhost:* *.ampxchange.com *.admarketplace.com *.admarketplace.net *.signal.co *.facebook.com *.ensighten.com *.omtrdc.net *.demdex.net pixel.snapsmedia.io *.bing.com *.btstatic.com *.thebrighttag.com *.google-analytics.com *.googleadservices.com *.googletagmanager.com *.doubleclick.net *.serving-sys.com *.yahoo.com *.yimg.com *.yieldoptimizer.com *.youtube.com *.ytimg.com *.criteo.net *.criteo.com *.cloudfront.net *.jivox.com static.hotjar.com vars.hotjar.com scripts.hotjar.com script.hotjar.com origin.acuityplatform.com www.everestjs.net s.tribalfusion.com rules.quantcount.com snap.licdn.com assets.adobedtm.com px.ads.linkedin.com p.teads.tv code.jquery.com secure.quantserve.com bttrack.com cdn.bttrack.com secure.adnxs.com cache.marriott.com c.tvpixel.com sc-static.net tr.snapchat.com; object-src 'self' lacek.hs.llnwd.net; style-src 'self' 'unsafe-inline' lacek.hs.llnwd.net fonts.googleapis.com ; img-src 'self' blob: * data:; media-src 'self' blob lacek.hs.llnwd.net; frame-src 'self' data: *.trustarc.com *.criteo.com static.criteo.net *.flashtalking.com *.demdex.net www.youtube.com player.vimeo.com lacek.hs.llnwd.net platform.twitter.com staticxx.facebook.com static.sojern.com insight.adsrvr.org localhost:* *.doubleclick.net sso.lacek.marriott.com/* *.sso.lacek.marriott.com/* *.marriott.com/aries-auth/logout.comp pixel.mathtag.com vars.hotjar.com login.dotomi.com ct.pinterest.com tr.snapchat.com; font-src 'self' data: lacek.hs.llnwd.net fonts.gstatic.com ; connect-src 'self' lacek.hs.llnwd.net ct.pinterest.com *.serving-sys.com *.omtrdc.net snapsmedia.io s.yimg.com dpm.demdex.net smetrics.marriott.com in.hotjar.com lasteventf-tm.everesttech.net bttrack.com cdn.linkedin.oribi.io cache.marriott.com p.tvpixel.com tr.snapchat.com geolocation.onetrust.com; report-uri https://pre-mar-utilities-aws.lacek.net/csp-report-uri/;
Cache-Control: no-cache, no-store, must-revalidate, proxy-revalidate, no-transform
Feature-Policy: geolocation 'none'; midi 'none'; microphone 'none'; camera 'none'; speaker 'none'; fullscreen 'self'; payment 'none';
Referrer-Policy: origin-when-cross-origin
X-Frame-Options: SAMEORIGIN
X-Xss-Protection: 1; mode=block
X-Content-Type-Options: nosniff
Content-Security-Policy: default-src 'self' lacek.hs.llnwd.net; script-src 'self' 'unsafe-inline' 'unsafe-eval' blob: lacek.hs.llnwd.net uat.moments.marriottbonvoy.com platform.twitter.com tms.marriott.com smetrics.marriott.com a.tribalfusion.com pixel.mathtag.com s.pinimg.com *.apextag.com *.sojern.com js.adsrvr.org connect.facebook.net analytics-mar.lacek.net analytics.lacek.net *.truste.com *.trustarc.com localhost:* *.ampxchange.com *.admarketplace.com *.admarketplace.net *.signal.co *.facebook.com *.ensighten.com *.omtrdc.net *.demdex.net pixel.snapsmedia.io *.bing.com *.btstatic.com *.thebrighttag.com *.google-analytics.com *.googleadservices.com *.googletagmanager.com *.doubleclick.net *.serving-sys.com *.yahoo.com *.yimg.com *.yieldoptimizer.com *.youtube.com *.ytimg.com *.criteo.net *.criteo.com *.cloudfront.net *.jivox.com static.hotjar.com vars.hotjar.com scripts.hotjar.com script.hotjar.com e.acuityplatform.com origin.acuityplatform.com www.everestjs.net s.tribalfusion.com rules.quantcount.com snap.licdn.com assets.adobedtm.com px.ads.linkedin.com p.teads.tv code.jquery.com secure.quantserve.com bttrack.com cdn.bttrack.com secure.adnxs.com cache.marriott.com c.tvpixel.com sc-static.net tr.snapchat.com; object-src 'self' lacek.hs.llnwd.net; style-src 'self' 'unsafe-inline' lacek.hs.llnwd.net fonts.googleapis.com ; img-src 'self' blob: * data:; media-src 'self' blob lacek.hs.llnwd.net; frame-src 'self' data: *.trustarc.com *.criteo.com static.criteo.net *.flashtalking.com *.demdex.net www.youtube.com player.vimeo.com lacek.hs.llnwd.net platform.twitter.com staticxx.facebook.com www.facebook.com static.sojern.com insight.adsrvr.org localhost:* *.doubleclick.net sso.lacek.marriott.com/* *.sso.lacek.marriott.com/* *.marriott.com/aries-auth/logout.comp pixel.mathtag.com vars.hotjar.com login.dotomi.com ct.pinterest.com tr.snapchat.com; font-src 'self' data: lacek.hs.llnwd.net fonts.gstatic.com ; connect-src 'self' lacek.hs.llnwd.net ct.pinterest.com *.serving-sys.com *.omtrdc.net snapsmedia.io s.yimg.com dpm.demdex.net smetrics.marriott.com in.hotjar.com lasteventf-tm.everesttech.net bttrack.com cdn.linkedin.oribi.io cache.marriott.com p.tvpixel.com tr.snapchat.com geolocation.onetrust.com; report-uri https://pre-mar-utilities-aws.lacek.net/csp-report-uri/;
Strict-Transport-Security: max-age=63072000; includeSubdomains; preload
X-Content-Security-Policy: default-src 'self' lacek.hs.llnwd.net; script-src 'self' 'unsafe-inline' 'unsafe-eval' blob: lacek.hs.llnwd.net uat.moments.marriottbonvoy.com platform.twitter.com tms.marriott.com s.pinimg.com smetrics.marriott.com a.tribalfusion.com pixel.mathtag.com s.pinimg.com *.apextag.com *.sojern.com js.adsrvr.org connect.facebook.net analytics.lacek.net *.truste.com *.trustarc.com localhost:* *.ampxchange.com *.admarketplace.com *.admarketplace.net *.signal.co *.facebook.com *.ensighten.com *.omtrdc.net *.demdex.net pixel.snapsmedia.io *.bing.com *.btstatic.com *.thebrighttag.com *.google-analytics.com *.googleadservices.com *.googletagmanager.com *.doubleclick.net *.serving-sys.com *.yahoo.com *.yimg.com *.yieldoptimizer.com *.youtube.com *.ytimg.com *.criteo.net *.criteo.com *.cloudfront.net *.jivox.com static.hotjar.com vars.hotjar.com scripts.hotjar.com script.hotjar.com origin.acuityplatform.com www.everestjs.net s.tribalfusion.com rules.quantcount.com snap.licdn.com assets.adobedtm.com px.ads.linkedin.com p.teads.tv code.jquery.com secure.quantserve.com bttrack.com cdn.bttrack.com secure.adnxs.com cache.marriott.com c.tvpixel.com sc-static.net tr.snapchat.com; object-src 'self' lacek.hs.llnwd.net; style-src 'self' 'unsafe-inline' lacek.hs.llnwd.net fonts.googleapis.com ; img-src 'self' blob: * data:; media-src 'self' blob lacek.hs.llnwd.net; frame-src 'self' data: *.trustarc.com *.criteo.com static.criteo.net *.flashtalking.com *.demdex.net www.youtube.com player.vimeo.com lacek.hs.llnwd.net platform.twitter.com staticxx.facebook.com static.sojern.com insight.adsrvr.org localhost:* *.doubleclick.net sso.lacek.marriott.com/* *.sso.lacek.marriott.com/* *.marriott.com/aries-auth/logout.comp pixel.mathtag.com vars.hotjar.com login.dotomi.com ct.pinterest.com tr.snapchat.com; font-src 'self' data: lacek.hs.llnwd.net fonts.gstatic.com; connect-src 'self' lacek.hs.llnwd.net ct.pinterest.com *.serving-sys.com *.omtrdc.net snapsmedia.io s.yimg.com dpm.demdex.net smetrics.marriott.com in.hotjar.com lasteventf-tm.everesttech.net bttrack.com cdn.linkedin.oribi.io cache.marriott.com p.tvpixel.com tr.snapchat.com geolocation.onetrust.com; report-uri https://pre-mar-utilities-aws.lacek.net/csp-report-uri/;
-
First snapshot:
1 year, 3 months ago
-
Latest snapshot:
1 year, 3 months ago
- Path: /
- Port: 80
- Status Code: 301
- Title: 301 Moved Permanently
-
Date: Thu, 07 Mar 2024 16:58:13 GMT
Server: Apache
Location: https://uat.moments.marriottbonvoy.com/
Content-Type: text/html; charset=iso-8859-1
Content-Length: 247
Strict-Transport-Security: max-age=63072000; includeSubdomains; preload
-
First snapshot:
1 year, 3 months ago
-
Latest snapshot:
1 year, 3 months ago
Page 1 of 1
Path
Port
Status Code
Content-Length
Title
Resp Headers
Location: /en-us
Content-Type: text/html
Location: https://uat.moments.marriottbonvoy.com/
Content-Type: text/html
- Path: /
- Port: 443
- Status Code: 301
- Title: Redirecting to /en-us
-
Date: Thu, 07 Mar 2024 16:58:12 GMT
Vary: Accept-Encoding
Pragma: no-cache
Server: Apache
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Location: /en-us
Expect-Ct: max-age=0
Set-Cookie: PHPSESSID=09ftdtntu7r3o1u11chl1rl5s6; path=/; secure; HttpOnly;HttpOnly;Secure, XSRF-TOKEN=eyJpdiI6IkpDMmJycklEb2ozQktpaE5uVDhoRXc9PSIsInZhbHVlIjoidUlwcXVYYjZaVkFyOXlDUnR1ZkxiRkgrMDR4Qlh1ampyV1RnbGRMdUxYRGRqRlRkeEJSOXpxXC95VXN0dzVLOHREMVRjSDVjQnFmZjBpamNpck5pazNZK3VoZHV6enBraFRoaTV3eWtXMmNaTTRVdkRjMmg4MkF1R1ArUHNuSkZ4IiwibWFjIjoiMjIyMWIwNmRjMjQzOTFlY2Q1ZTA2MTJlMWI3ODNjNjZmZTI2N2E1YmZmOGQ0MjJkOWRiNjM4YTI1ODdmODJmNyJ9; expires=Thu, 07-Mar-2024 18:58:12 GMT; Max-Age=7200; path=/; samesite=lax;HttpOnly;Secure, moments_session=Llw89LXuSTyf7XRWg1ZGVArUZGZvuFBAoYuLA3xV; path=/; httponly; samesite=lax;HttpOnly;Secure
Content-Type: text/html; charset=UTF-8
X-Webkit-Csp: default-src 'self' lacek.hs.llnwd.net; script-src 'self' 'unsafe-inline' 'unsafe-eval' blob: lacek.hs.llnwd.net uat.moments.marriottbonvoy.com platform.twitter.com tms.marriott.com s.pinimg.com smetrics.marriott.com a.tribalfusion.com pixel.mathtag.com s.pinimg.com *.apextag.com *.sojern.com js.adsrvr.org connect.facebook.net analytics.lacek.net *.truste.com *.trustarc.com localhost:* *.ampxchange.com *.admarketplace.com *.admarketplace.net *.signal.co *.facebook.com *.ensighten.com *.omtrdc.net *.demdex.net pixel.snapsmedia.io *.bing.com *.btstatic.com *.thebrighttag.com *.google-analytics.com *.googleadservices.com *.googletagmanager.com *.doubleclick.net *.serving-sys.com *.yahoo.com *.yimg.com *.yieldoptimizer.com *.youtube.com *.ytimg.com *.criteo.net *.criteo.com *.cloudfront.net *.jivox.com static.hotjar.com vars.hotjar.com scripts.hotjar.com script.hotjar.com origin.acuityplatform.com www.everestjs.net s.tribalfusion.com rules.quantcount.com snap.licdn.com assets.adobedtm.com px.ads.linkedin.com p.teads.tv code.jquery.com secure.quantserve.com bttrack.com cdn.bttrack.com secure.adnxs.com cache.marriott.com c.tvpixel.com sc-static.net tr.snapchat.com; object-src 'self' lacek.hs.llnwd.net; style-src 'self' 'unsafe-inline' lacek.hs.llnwd.net fonts.googleapis.com ; img-src 'self' blob: * data:; media-src 'self' blob lacek.hs.llnwd.net; frame-src 'self' data: *.trustarc.com *.criteo.com static.criteo.net *.flashtalking.com *.demdex.net www.youtube.com player.vimeo.com lacek.hs.llnwd.net platform.twitter.com staticxx.facebook.com static.sojern.com insight.adsrvr.org localhost:* *.doubleclick.net sso.lacek.marriott.com/* *.sso.lacek.marriott.com/* *.marriott.com/aries-auth/logout.comp pixel.mathtag.com vars.hotjar.com login.dotomi.com ct.pinterest.com tr.snapchat.com; font-src 'self' data: lacek.hs.llnwd.net fonts.gstatic.com ; connect-src 'self' lacek.hs.llnwd.net ct.pinterest.com *.serving-sys.com *.omtrdc.net snapsmedia.io s.yimg.com dpm.demdex.net smetrics.marriott.com in.hotjar.com lasteventf-tm.everesttech.net bttrack.com cdn.linkedin.oribi.io cache.marriott.com p.tvpixel.com tr.snapchat.com geolocation.onetrust.com; report-uri https://pre-mar-utilities-aws.lacek.net/csp-report-uri/;
Cache-Control: no-cache, no-store, must-revalidate, proxy-revalidate, no-transform
Feature-Policy: geolocation 'none'; midi 'none'; microphone 'none'; camera 'none'; speaker 'none'; fullscreen 'self'; payment 'none';
Referrer-Policy: origin-when-cross-origin
X-Frame-Options: SAMEORIGIN
X-Xss-Protection: 1; mode=block
X-Content-Type-Options: nosniff
Content-Security-Policy: default-src 'self' lacek.hs.llnwd.net; script-src 'self' 'unsafe-inline' 'unsafe-eval' blob: lacek.hs.llnwd.net uat.moments.marriottbonvoy.com platform.twitter.com tms.marriott.com smetrics.marriott.com a.tribalfusion.com pixel.mathtag.com s.pinimg.com *.apextag.com *.sojern.com js.adsrvr.org connect.facebook.net analytics-mar.lacek.net analytics.lacek.net *.truste.com *.trustarc.com localhost:* *.ampxchange.com *.admarketplace.com *.admarketplace.net *.signal.co *.facebook.com *.ensighten.com *.omtrdc.net *.demdex.net pixel.snapsmedia.io *.bing.com *.btstatic.com *.thebrighttag.com *.google-analytics.com *.googleadservices.com *.googletagmanager.com *.doubleclick.net *.serving-sys.com *.yahoo.com *.yimg.com *.yieldoptimizer.com *.youtube.com *.ytimg.com *.criteo.net *.criteo.com *.cloudfront.net *.jivox.com static.hotjar.com vars.hotjar.com scripts.hotjar.com script.hotjar.com e.acuityplatform.com origin.acuityplatform.com www.everestjs.net s.tribalfusion.com rules.quantcount.com snap.licdn.com assets.adobedtm.com px.ads.linkedin.com p.teads.tv code.jquery.com secure.quantserve.com bttrack.com cdn.bttrack.com secure.adnxs.com cache.marriott.com c.tvpixel.com sc-static.net tr.snapchat.com; object-src 'self' lacek.hs.llnwd.net; style-src 'self' 'unsafe-inline' lacek.hs.llnwd.net fonts.googleapis.com ; img-src 'self' blob: * data:; media-src 'self' blob lacek.hs.llnwd.net; frame-src 'self' data: *.trustarc.com *.criteo.com static.criteo.net *.flashtalking.com *.demdex.net www.youtube.com player.vimeo.com lacek.hs.llnwd.net platform.twitter.com staticxx.facebook.com www.facebook.com static.sojern.com insight.adsrvr.org localhost:* *.doubleclick.net sso.lacek.marriott.com/* *.sso.lacek.marriott.com/* *.marriott.com/aries-auth/logout.comp pixel.mathtag.com vars.hotjar.com login.dotomi.com ct.pinterest.com tr.snapchat.com; font-src 'self' data: lacek.hs.llnwd.net fonts.gstatic.com ; connect-src 'self' lacek.hs.llnwd.net ct.pinterest.com *.serving-sys.com *.omtrdc.net snapsmedia.io s.yimg.com dpm.demdex.net smetrics.marriott.com in.hotjar.com lasteventf-tm.everesttech.net bttrack.com cdn.linkedin.oribi.io cache.marriott.com p.tvpixel.com tr.snapchat.com geolocation.onetrust.com; report-uri https://pre-mar-utilities-aws.lacek.net/csp-report-uri/;
Strict-Transport-Security: max-age=63072000; includeSubdomains; preload
X-Content-Security-Policy: default-src 'self' lacek.hs.llnwd.net; script-src 'self' 'unsafe-inline' 'unsafe-eval' blob: lacek.hs.llnwd.net uat.moments.marriottbonvoy.com platform.twitter.com tms.marriott.com s.pinimg.com smetrics.marriott.com a.tribalfusion.com pixel.mathtag.com s.pinimg.com *.apextag.com *.sojern.com js.adsrvr.org connect.facebook.net analytics.lacek.net *.truste.com *.trustarc.com localhost:* *.ampxchange.com *.admarketplace.com *.admarketplace.net *.signal.co *.facebook.com *.ensighten.com *.omtrdc.net *.demdex.net pixel.snapsmedia.io *.bing.com *.btstatic.com *.thebrighttag.com *.google-analytics.com *.googleadservices.com *.googletagmanager.com *.doubleclick.net *.serving-sys.com *.yahoo.com *.yimg.com *.yieldoptimizer.com *.youtube.com *.ytimg.com *.criteo.net *.criteo.com *.cloudfront.net *.jivox.com static.hotjar.com vars.hotjar.com scripts.hotjar.com script.hotjar.com origin.acuityplatform.com www.everestjs.net s.tribalfusion.com rules.quantcount.com snap.licdn.com assets.adobedtm.com px.ads.linkedin.com p.teads.tv code.jquery.com secure.quantserve.com bttrack.com cdn.bttrack.com secure.adnxs.com cache.marriott.com c.tvpixel.com sc-static.net tr.snapchat.com; object-src 'self' lacek.hs.llnwd.net; style-src 'self' 'unsafe-inline' lacek.hs.llnwd.net fonts.googleapis.com ; img-src 'self' blob: * data:; media-src 'self' blob lacek.hs.llnwd.net; frame-src 'self' data: *.trustarc.com *.criteo.com static.criteo.net *.flashtalking.com *.demdex.net www.youtube.com player.vimeo.com lacek.hs.llnwd.net platform.twitter.com staticxx.facebook.com static.sojern.com insight.adsrvr.org localhost:* *.doubleclick.net sso.lacek.marriott.com/* *.sso.lacek.marriott.com/* *.marriott.com/aries-auth/logout.comp pixel.mathtag.com vars.hotjar.com login.dotomi.com ct.pinterest.com tr.snapchat.com; font-src 'self' data: lacek.hs.llnwd.net fonts.gstatic.com; connect-src 'self' lacek.hs.llnwd.net ct.pinterest.com *.serving-sys.com *.omtrdc.net snapsmedia.io s.yimg.com dpm.demdex.net smetrics.marriott.com in.hotjar.com lasteventf-tm.everesttech.net bttrack.com cdn.linkedin.oribi.io cache.marriott.com p.tvpixel.com tr.snapchat.com geolocation.onetrust.com; report-uri https://pre-mar-utilities-aws.lacek.net/csp-report-uri/;
- First snapshot: 1 year, 3 months ago
- Latest snapshot: 1 year, 3 months ago
- Path: /
- Port: 80
- Status Code: 301
- Title: 301 Moved Permanently
-
Date: Thu, 07 Mar 2024 16:58:13 GMT
Server: Apache
Location: https://uat.moments.marriottbonvoy.com/
Content-Type: text/html; charset=iso-8859-1
Content-Length: 247
Strict-Transport-Security: max-age=63072000; includeSubdomains; preload
- First snapshot: 1 year, 3 months ago
- Latest snapshot: 1 year, 3 months ago