MercadoLibre HackerOne
myaccount.mercadolibre.com.uy
Endpoints (2 of 2)
Page 1 of 1
Path
Port
Status Code
Content-Length
Title
Resp Headers
/
80
301
167
301 Moved Permanently
Location: https://myaccount.mercadolibre.com.uy/
Content-Type: text/html
/
443
302
170
None
Location: https://www.mercadolibre.com/jms/mlu/lgz/login?platform_id=ML&go=https%3A%2F%2Fmyaccount.mercadolibre.com.uy%2Fmyaccount%2Fmymenu&loginType=explicit
Content-Type: text/plain
- Path: /
- Port: 80
- Status Code: 301
- Title: 301 Moved Permanently
-
Via: 1.1 9d35ce6897d7f02042955443076a54de.cloudfront.net (CloudFront)
Date: Mon, 10 Jun 2024 23:52:43 GMT
Server: CloudFront
Alt-Svc: h3=":443"; ma=86400
X-Cache: Redirect from cloudfront
Location: https://myaccount.mercadolibre.com.uy/
X-Amz-Cf-Id: BrLrlyOHqVFdpsOT6iEj4gEArRCcP7ynDCY-aqmDHSTKwVc2l73Jcg==
Content-Type: text/html
X-Amz-Cf-Pop: EWR53-P1
Content-Length: 167
-
Technologies:
Amazon Cloudfront
Amazon Web Services
Http/3
-
First snapshot:
9 months ago
-
Latest snapshot:
9 months ago
- Path: /
- Port: 443
- Status Code: 302
- Title: None
-
Via: 1.1 c4460641b6e6b194f0c11732a1b10d1c.cloudfront.net (CloudFront)
Date: Mon, 10 Jun 2024 23:52:43 GMT
Vary: Accept, Accept-Encoding
Server: Tengine
X-D2id: 9a859f83-2a7f-49b3-818d-d321997b92b2
Alt-Svc: h3=":443"; ma=86400
X-Cache: Miss from cloudfront
Location: https://www.mercadolibre.com/jms/mlu/lgz/login?platform_id=ML&go=https%3A%2F%2Fmyaccount.mercadolibre.com.uy%2Fmyaccount%2Fmymenu&loginType=explicit
Accept-Ch: device-memory, dpr, viewport-width, rtt, downlink, ect, save-data
Expect-Ct: max-age=0
Set-Cookie: _d2id=9a859f83-2a7f-49b3-818d-d321997b92b2-n; SameSite=None; Secure; Path=/; Domain=.mercadolibre.com.uy; Expires=Tue, 10 Jun 2025 23:52:43 GMT, _csrf=VvSF2GQxeu6t9WrqvOA0PTI_; Path=/; HttpOnly; Secure; SameSite=None
X-Amz-Cf-Id: r6VqmIG2Ps7JDnUbwWGRg9vPoMi20fNuClcFTD-hgA8L_ZKdZepe1A==
Content-Type: text/plain; charset=utf-8
X-Amz-Cf-Pop: EWR53-P1
X-Request-Id: 9a859f83-2a7f-49b3-818d-d321997b92b2
Cache-Control: private, max-age=0, no-cache, no-store, must-revalidate
Content-Length: 170
Referrer-Policy: no-referrer-when-downgrade
X-Xss-Protection: 1; mode=block
Accept-Ch-Lifetime: 60
X-Download-Options: noopen
Reporting-Endpoints: csp-endpoint="https://events.mercadolibre.com/csp/v2/reports?identifier=Z9n76vwz4OmkKEBso4WSVVUKnvZLuoRR3DQawqfPNwdnFWBIuPcW1Pk8vs8H6aSAWfc7urds&user_id=&request_id=9a859f83-2a7f-49b3-818d-d321997b92b2"
X-Request-Device-Id: 9a859f83-2a7f-49b3-818d-d321997b92b2
X-Content-Type-Options: nosniff
X-Dns-Prefetch-Control: on
Content-Security-Policy: script-src 'nonce-XBaTRbhZ6/BLDaXcHXRZxw==' 'strict-dynamic' 'unsafe-eval' 'report-sample' https: 'unsafe-inline'; base-uri 'none'; report-uri https://events.mercadolibre.com/csp/reports?identifier=Z9n76vwz4OmkKEBso4WSVVUKnvZLuoRR3DQawqfPNwdnFWBIuPcW1Pk8vs8H6aSAWfc7urds&policy_id=10&user_id=&request_id=9a859f83-2a7f-49b3-818d-d321997b92b2; report-to csp-endpoint; object-src https://http2.mlstatic.com/ https://mlstaticquic-a.akamaihd.net/
Strict-Transport-Security: max-age=15552000; includeSubDomains
X-Envoy-Upstream-Service-Time: 8
X-Permitted-Cross-Domain-Policies: none
-
Technologies:
Amazon Cloudfront
Amazon Web Services
Envoy
Hsts
Http/3
Tengine
-
First snapshot:
9 months ago
-
Latest snapshot:
9 months ago
Page 1 of 1
Path
Port
Status Code
Content-Length
Title
Resp Headers
Location: https://myaccount.mercadolibre.com.uy/
Content-Type: text/html
Location: https://www.mercadolibre.com/jms/mlu/lgz/login?platform_id=ML&go=https%3A%2F%2Fmyaccount.mercadolibre.com.uy%2Fmyaccount%2Fmymenu&loginType=explicit
Content-Type: text/plain
- Path: /
- Port: 80
- Status Code: 301
- Title: 301 Moved Permanently
-
Via: 1.1 9d35ce6897d7f02042955443076a54de.cloudfront.net (CloudFront)
Date: Mon, 10 Jun 2024 23:52:43 GMT
Server: CloudFront
Alt-Svc: h3=":443"; ma=86400
X-Cache: Redirect from cloudfront
Location: https://myaccount.mercadolibre.com.uy/
X-Amz-Cf-Id: BrLrlyOHqVFdpsOT6iEj4gEArRCcP7ynDCY-aqmDHSTKwVc2l73Jcg==
Content-Type: text/html
X-Amz-Cf-Pop: EWR53-P1
Content-Length: 167
-
Technologies:
Amazon Cloudfront
Amazon Web Services
Http/3
- First snapshot: 9 months ago
- Latest snapshot: 9 months ago
- Path: /
- Port: 443
- Status Code: 302
- Title: None
-
Via: 1.1 c4460641b6e6b194f0c11732a1b10d1c.cloudfront.net (CloudFront)
Date: Mon, 10 Jun 2024 23:52:43 GMT
Vary: Accept, Accept-Encoding
Server: Tengine
X-D2id: 9a859f83-2a7f-49b3-818d-d321997b92b2
Alt-Svc: h3=":443"; ma=86400
X-Cache: Miss from cloudfront
Location: https://www.mercadolibre.com/jms/mlu/lgz/login?platform_id=ML&go=https%3A%2F%2Fmyaccount.mercadolibre.com.uy%2Fmyaccount%2Fmymenu&loginType=explicit
Accept-Ch: device-memory, dpr, viewport-width, rtt, downlink, ect, save-data
Expect-Ct: max-age=0
Set-Cookie: _d2id=9a859f83-2a7f-49b3-818d-d321997b92b2-n; SameSite=None; Secure; Path=/; Domain=.mercadolibre.com.uy; Expires=Tue, 10 Jun 2025 23:52:43 GMT, _csrf=VvSF2GQxeu6t9WrqvOA0PTI_; Path=/; HttpOnly; Secure; SameSite=None
X-Amz-Cf-Id: r6VqmIG2Ps7JDnUbwWGRg9vPoMi20fNuClcFTD-hgA8L_ZKdZepe1A==
Content-Type: text/plain; charset=utf-8
X-Amz-Cf-Pop: EWR53-P1
X-Request-Id: 9a859f83-2a7f-49b3-818d-d321997b92b2
Cache-Control: private, max-age=0, no-cache, no-store, must-revalidate
Content-Length: 170
Referrer-Policy: no-referrer-when-downgrade
X-Xss-Protection: 1; mode=block
Accept-Ch-Lifetime: 60
X-Download-Options: noopen
Reporting-Endpoints: csp-endpoint="https://events.mercadolibre.com/csp/v2/reports?identifier=Z9n76vwz4OmkKEBso4WSVVUKnvZLuoRR3DQawqfPNwdnFWBIuPcW1Pk8vs8H6aSAWfc7urds&user_id=&request_id=9a859f83-2a7f-49b3-818d-d321997b92b2"
X-Request-Device-Id: 9a859f83-2a7f-49b3-818d-d321997b92b2
X-Content-Type-Options: nosniff
X-Dns-Prefetch-Control: on
Content-Security-Policy: script-src 'nonce-XBaTRbhZ6/BLDaXcHXRZxw==' 'strict-dynamic' 'unsafe-eval' 'report-sample' https: 'unsafe-inline'; base-uri 'none'; report-uri https://events.mercadolibre.com/csp/reports?identifier=Z9n76vwz4OmkKEBso4WSVVUKnvZLuoRR3DQawqfPNwdnFWBIuPcW1Pk8vs8H6aSAWfc7urds&policy_id=10&user_id=&request_id=9a859f83-2a7f-49b3-818d-d321997b92b2; report-to csp-endpoint; object-src https://http2.mlstatic.com/ https://mlstaticquic-a.akamaihd.net/
Strict-Transport-Security: max-age=15552000; includeSubDomains
X-Envoy-Upstream-Service-Time: 8
X-Permitted-Cross-Domain-Policies: none
-
Technologies:
Amazon Cloudfront
Amazon Web Services
Envoy
Hsts
Http/3
Tengine
- First snapshot: 9 months ago
- Latest snapshot: 9 months ago