MercadoLibre HackerOne
prod-cxwidget.mercadopago.com.br
Endpoints (2 of 2)
Page 1 of 1
Path
Port
Status Code
Content-Length
Title
Resp Headers
/
80
301
167
301 Moved Permanently
Location: https://prod-cxwidget.mercadopago.com.br/
Content-Type: text/html
/
443
200
46248
None
Content-Type: text/html
- Path: /
- Port: 80
- Status Code: 301
- Title: 301 Moved Permanently
-
Via: 1.1 f6acfb143216fabf7be9b3a603a486ae.cloudfront.net (CloudFront)
Date: Mon, 10 Jun 2024 23:55:32 GMT
Server: CloudFront
Alt-Svc: h3=":443"; ma=86400
X-Cache: Redirect from cloudfront
Location: https://prod-cxwidget.mercadopago.com.br/
X-Amz-Cf-Id: o7yVyBb3vRpM_WtRMsfvDmSF-mJSUpaFKjEMRbOwe_VR9_XTnF_SfQ==
Content-Type: text/html
X-Amz-Cf-Pop: JFK50-P7
Content-Length: 167
-
Technologies:
Amazon Cloudfront
Amazon Web Services
Http/3
-
First snapshot:
3 years, 1 month ago
-
Latest snapshot:
9 months ago
- Path: /
- Port: 443
- Status Code: 200
- Title: None
-
Via: 1.1 43612939fd59beab4d0cf84fecc2c956.cloudfront.net (CloudFront)
Date: Mon, 10 Jun 2024 23:55:25 GMT
Etag: W/"b4a8-yamSWLzEJr3D6Q6hxskV0Anl3ZE"
Vary: Accept-Encoding
Server: Tengine
X-D2id: f2961365-07c5-42c3-94f8-219cbb84e8b8
Alt-Svc: h3=":443"; ma=86400
X-Cache: Miss from cloudfront
Accept-Ch: device-memory, dpr, viewport-width, rtt, downlink, ect, save-data
Expect-Ct: max-age=0
Set-Cookie: _d2id=f2961365-07c5-42c3-94f8-219cbb84e8b8-n; SameSite=None; Secure; Path=/; Domain=.mercadopago.com.br; Expires=Tue, 10 Jun 2025 23:55:24 GMT, _csrf=BQFUJYLhqTP9EDmyd-c7jwOv; Path=/; HttpOnly; Secure; SameSite=None, NSESSIONID_LUIGI_SESSION=s%3AbUT9-TIADDVgjG7uixz0vrJVo8RXoE5E.OF%2FG3Gtb3xRB5T29LhkO%2BPOi5dS5IFlqDV9WC%2FOQFn8; Path=/; Expires=Tue, 11 Jun 2024 00:25:25 GMT; HttpOnly; Secure
X-Amz-Cf-Id: UdyUv9409R8itFdoFsBWKUi4UISjHHMvq8QNLyHc7q9fYaLDXSCkew==
Content-Type: text/html; charset=utf-8
X-Amz-Cf-Pop: JFK50-P7
X-Request-Id: f2961365-07c5-42c3-94f8-219cbb84e8b8
Cache-Control: private, max-age=0, no-cache, no-store, must-revalidate
Referrer-Policy: no-referrer-when-downgrade
X-Xss-Protection: 1; mode=block
Accept-Ch-Lifetime: 60
X-Download-Options: noopen
Reporting-Endpoints: csp-endpoint="https://events.mercadolibre.com/csp/v2/reports?identifier=z4KT7qnFE_rjNung3Tj9NkaTx2RkT7YDi9Qe0u8zPnjM-R4VN_M9CNAgii0NJmY4iez0jEMNNuonLg==&user_id=&request_id=f2961365-07c5-42c3-94f8-219cbb84e8b8"
X-Request-Device-Id: f2961365-07c5-42c3-94f8-219cbb84e8b8
X-Content-Type-Options: nosniff
X-Dns-Prefetch-Control: on
Content-Security-Policy: script-src 'nonce-uuwMwAg460yD+bw/jMWsFw==' 'strict-dynamic' https: 'unsafe-inline' 'report-sample'; base-uri 'none'; report-uri https://events.mercadolibre.com/csp/reports?identifier=z4KT7qnFE_rjNung3Tj9NkaTx2RkT7YDi9Qe0u8zPnjM-R4VN_M9CNAgii0NJmY4iez0jEMNNuonLg==&policy_id=9&user_id=&request_id=f2961365-07c5-42c3-94f8-219cbb84e8b8; report-to csp-endpoint; object-src https://http2.mlstatic.com/ https://mlstaticquic-a.akamaihd.net/
Strict-Transport-Security: max-age=15552000; includeSubDomains
X-Envoy-Upstream-Service-Time: 23
X-Permitted-Cross-Domain-Policies: none
-
Technologies:
Amazon Cloudfront
Amazon Web Services
Envoy
Hsts
Http/3
Tengine
-
First snapshot:
3 years, 1 month ago
-
Latest snapshot:
9 months ago
Page 1 of 1
Path
Port
Status Code
Content-Length
Title
Resp Headers
Location: https://prod-cxwidget.mercadopago.com.br/
Content-Type: text/html
Content-Type: text/html
- Path: /
- Port: 80
- Status Code: 301
- Title: 301 Moved Permanently
-
Via: 1.1 f6acfb143216fabf7be9b3a603a486ae.cloudfront.net (CloudFront)
Date: Mon, 10 Jun 2024 23:55:32 GMT
Server: CloudFront
Alt-Svc: h3=":443"; ma=86400
X-Cache: Redirect from cloudfront
Location: https://prod-cxwidget.mercadopago.com.br/
X-Amz-Cf-Id: o7yVyBb3vRpM_WtRMsfvDmSF-mJSUpaFKjEMRbOwe_VR9_XTnF_SfQ==
Content-Type: text/html
X-Amz-Cf-Pop: JFK50-P7
Content-Length: 167
-
Technologies:
Amazon Cloudfront
Amazon Web Services
Http/3
- First snapshot: 3 years, 1 month ago
- Latest snapshot: 9 months ago
- Path: /
- Port: 443
- Status Code: 200
- Title: None
-
Via: 1.1 43612939fd59beab4d0cf84fecc2c956.cloudfront.net (CloudFront)
Date: Mon, 10 Jun 2024 23:55:25 GMT
Etag: W/"b4a8-yamSWLzEJr3D6Q6hxskV0Anl3ZE"
Vary: Accept-Encoding
Server: Tengine
X-D2id: f2961365-07c5-42c3-94f8-219cbb84e8b8
Alt-Svc: h3=":443"; ma=86400
X-Cache: Miss from cloudfront
Accept-Ch: device-memory, dpr, viewport-width, rtt, downlink, ect, save-data
Expect-Ct: max-age=0
Set-Cookie: _d2id=f2961365-07c5-42c3-94f8-219cbb84e8b8-n; SameSite=None; Secure; Path=/; Domain=.mercadopago.com.br; Expires=Tue, 10 Jun 2025 23:55:24 GMT, _csrf=BQFUJYLhqTP9EDmyd-c7jwOv; Path=/; HttpOnly; Secure; SameSite=None, NSESSIONID_LUIGI_SESSION=s%3AbUT9-TIADDVgjG7uixz0vrJVo8RXoE5E.OF%2FG3Gtb3xRB5T29LhkO%2BPOi5dS5IFlqDV9WC%2FOQFn8; Path=/; Expires=Tue, 11 Jun 2024 00:25:25 GMT; HttpOnly; Secure
X-Amz-Cf-Id: UdyUv9409R8itFdoFsBWKUi4UISjHHMvq8QNLyHc7q9fYaLDXSCkew==
Content-Type: text/html; charset=utf-8
X-Amz-Cf-Pop: JFK50-P7
X-Request-Id: f2961365-07c5-42c3-94f8-219cbb84e8b8
Cache-Control: private, max-age=0, no-cache, no-store, must-revalidate
Referrer-Policy: no-referrer-when-downgrade
X-Xss-Protection: 1; mode=block
Accept-Ch-Lifetime: 60
X-Download-Options: noopen
Reporting-Endpoints: csp-endpoint="https://events.mercadolibre.com/csp/v2/reports?identifier=z4KT7qnFE_rjNung3Tj9NkaTx2RkT7YDi9Qe0u8zPnjM-R4VN_M9CNAgii0NJmY4iez0jEMNNuonLg==&user_id=&request_id=f2961365-07c5-42c3-94f8-219cbb84e8b8"
X-Request-Device-Id: f2961365-07c5-42c3-94f8-219cbb84e8b8
X-Content-Type-Options: nosniff
X-Dns-Prefetch-Control: on
Content-Security-Policy: script-src 'nonce-uuwMwAg460yD+bw/jMWsFw==' 'strict-dynamic' https: 'unsafe-inline' 'report-sample'; base-uri 'none'; report-uri https://events.mercadolibre.com/csp/reports?identifier=z4KT7qnFE_rjNung3Tj9NkaTx2RkT7YDi9Qe0u8zPnjM-R4VN_M9CNAgii0NJmY4iez0jEMNNuonLg==&policy_id=9&user_id=&request_id=f2961365-07c5-42c3-94f8-219cbb84e8b8; report-to csp-endpoint; object-src https://http2.mlstatic.com/ https://mlstaticquic-a.akamaihd.net/
Strict-Transport-Security: max-age=15552000; includeSubDomains
X-Envoy-Upstream-Service-Time: 23
X-Permitted-Cross-Domain-Policies: none
-
Technologies:
Amazon Cloudfront
Amazon Web Services
Envoy
Hsts
Http/3
Tengine
- First snapshot: 3 years, 1 month ago
- Latest snapshot: 9 months ago