MercadoLibre HackerOne
turismo.mercadolibre.com.uy
Endpoints (2 of 2)
Page 1 of 1
Path
Port
Status Code
Content-Length
Title
Resp Headers
/
80
301
167
301 Moved Permanently
Location: https://turismo.mercadolibre.com.uy/
Content-Type: text/html
/
443
301
206205
None
Location: https://servicios.mercadolibre.com.uy/turismo/
Content-Type: text/html
- Path: /
- Port: 80
- Status Code: 301
- Title: 301 Moved Permanently
-
Via: 1.1 1baed9857df8e3a07a6cd7cd51feb3f8.cloudfront.net (CloudFront)
Date: Mon, 10 Jun 2024 23:54:55 GMT
Server: CloudFront
Alt-Svc: h3=":443"; ma=86400
X-Cache: Redirect from cloudfront
Location: https://turismo.mercadolibre.com.uy/
X-Amz-Cf-Id: 7AwE97_O3Vuz-lvhZwusRUlpN8Ufv1eqrEMx-zAlz2GmHoDoihmMNg==
Content-Type: text/html
X-Amz-Cf-Pop: EWR53-P1
Content-Length: 167
-
Technologies:
Amazon Cloudfront
Amazon Web Services
Http/3
-
First snapshot:
8 months, 4 weeks ago
-
Latest snapshot:
8 months, 4 weeks ago
- Path: /
- Port: 443
- Status Code: 301
- Title: None
-
Via: 1.1 95edb2a6efdb5ee4d3c7f7aa298bb2f2.cloudfront.net (CloudFront)
Date: Mon, 10 Jun 2024 23:55:05 GMT
Etag: W/"3257d-AWupLrUW4ysgtHqtzd17zj44Deo"
Vary: Accept-Encoding
Server: Tengine
X-D2id: 259adbfb-ea35-49a4-b8eb-0e1e0c3a23c5
Alt-Svc: h3=":443"; ma=86400
X-Cache: Miss from cloudfront
Location: https://servicios.mercadolibre.com.uy/turismo/
Accept-Ch: device-memory, dpr, viewport-width, rtt, downlink, ect, save-data
Expect-Ct: max-age=0
Set-Cookie: _d2id=259adbfb-ea35-49a4-b8eb-0e1e0c3a23c5-n; SameSite=None; Secure; Path=/; Domain=.mercadolibre.com.uy; Expires=Tue, 10 Jun 2025 23:55:05 GMT, _csrf=iAvdRZmQLvGwRUTWRdHkSEuJ; Path=/; HttpOnly; Secure; SameSite=None, _csrf=SP4rTl8Z2WWqdWwZo6h4wJDy; Path=/; Secure; SameSite=None, compats-widgetSearch=; Max-Age=0; Domain=.mercadolibre.com.uy; Path=/; Expires=Mon, 10 Jun 2024 23:55:05 GMT; Secure; SameSite=None, c_ui-navigation=6.6.55; Domain=turismo.mercadolibre.com.uy; Path=/; Expires=Wed, 10 Jul 2024 23:55:05 GMT; HttpOnly; Secure; SameSite=None
Siteisocode: UY
X-Amz-Cf-Id: _qgc8jxiUcUyaP-GyX4z1piCwjQkIuCg7x2yXQIR3o5qYMTYPo84Pw==
Content-Type: text/html; charset=utf-8
X-Amz-Cf-Pop: EWR53-P1
X-Request-Id: 259adbfb-ea35-49a4-b8eb-0e1e0c3a23c5
Cache-Control: public,max-age=3600
Referrer-Policy: no-referrer-when-downgrade
X-Is-Search-Bot: true
X-Redirect-Cause: SEO_CANONICAL
X-Xss-Protection: 1; mode=block
Accept-Ch-Lifetime: 60
X-Download-Options: noopen
Reporting-Endpoints: csp-endpoint="https://events.mercadolibre.com/csp/v2/reports?identifier=phl473rvslp-_4d-XXJ1aZvEcUWUIlR68WOO8dode4at7FkKPpyolItQpD6isTqa&user_id=&request_id=259adbfb-ea35-49a4-b8eb-0e1e0c3a23c5"
X-Request-Device-Id: 259adbfb-ea35-49a4-b8eb-0e1e0c3a23c5
X-Navigation-Version: layout-5.12.2
X-Content-Type-Options: nosniff
X-Dns-Prefetch-Control: on
Content-Security-Policy: script-src 'nonce-ezZq6xplBIapiLU0Hq9cHw==' 'strict-dynamic' https: 'unsafe-inline' 'report-sample'; base-uri 'none'; report-uri https://events.mercadolibre.com/csp/reports?identifier=phl473rvslp-_4d-XXJ1aZvEcUWUIlR68WOO8dode4at7FkKPpyolItQpD6isTqa&policy_id=9&user_id=&request_id=259adbfb-ea35-49a4-b8eb-0e1e0c3a23c5; report-to csp-endpoint; object-src https://http2.mlstatic.com/ https://mlstaticquic-a.akamaihd.net/
Strict-Transport-Security: max-age=15552000; includeSubDomains
X-Envoy-Upstream-Service-Time: 191
X-Permitted-Cross-Domain-Policies: none
-
Technologies:
Amazon Cloudfront
Amazon Web Services
Envoy
Hsts
Http/3
Tengine
-
First snapshot:
8 months, 4 weeks ago
-
Latest snapshot:
8 months, 4 weeks ago
Page 1 of 1
Path
Port
Status Code
Content-Length
Title
Resp Headers
Location: https://turismo.mercadolibre.com.uy/
Content-Type: text/html
Location: https://servicios.mercadolibre.com.uy/turismo/
Content-Type: text/html
- Path: /
- Port: 80
- Status Code: 301
- Title: 301 Moved Permanently
-
Via: 1.1 1baed9857df8e3a07a6cd7cd51feb3f8.cloudfront.net (CloudFront)
Date: Mon, 10 Jun 2024 23:54:55 GMT
Server: CloudFront
Alt-Svc: h3=":443"; ma=86400
X-Cache: Redirect from cloudfront
Location: https://turismo.mercadolibre.com.uy/
X-Amz-Cf-Id: 7AwE97_O3Vuz-lvhZwusRUlpN8Ufv1eqrEMx-zAlz2GmHoDoihmMNg==
Content-Type: text/html
X-Amz-Cf-Pop: EWR53-P1
Content-Length: 167
-
Technologies:
Amazon Cloudfront
Amazon Web Services
Http/3
- First snapshot: 8 months, 4 weeks ago
- Latest snapshot: 8 months, 4 weeks ago
- Path: /
- Port: 443
- Status Code: 301
- Title: None
-
Via: 1.1 95edb2a6efdb5ee4d3c7f7aa298bb2f2.cloudfront.net (CloudFront)
Date: Mon, 10 Jun 2024 23:55:05 GMT
Etag: W/"3257d-AWupLrUW4ysgtHqtzd17zj44Deo"
Vary: Accept-Encoding
Server: Tengine
X-D2id: 259adbfb-ea35-49a4-b8eb-0e1e0c3a23c5
Alt-Svc: h3=":443"; ma=86400
X-Cache: Miss from cloudfront
Location: https://servicios.mercadolibre.com.uy/turismo/
Accept-Ch: device-memory, dpr, viewport-width, rtt, downlink, ect, save-data
Expect-Ct: max-age=0
Set-Cookie: _d2id=259adbfb-ea35-49a4-b8eb-0e1e0c3a23c5-n; SameSite=None; Secure; Path=/; Domain=.mercadolibre.com.uy; Expires=Tue, 10 Jun 2025 23:55:05 GMT, _csrf=iAvdRZmQLvGwRUTWRdHkSEuJ; Path=/; HttpOnly; Secure; SameSite=None, _csrf=SP4rTl8Z2WWqdWwZo6h4wJDy; Path=/; Secure; SameSite=None, compats-widgetSearch=; Max-Age=0; Domain=.mercadolibre.com.uy; Path=/; Expires=Mon, 10 Jun 2024 23:55:05 GMT; Secure; SameSite=None, c_ui-navigation=6.6.55; Domain=turismo.mercadolibre.com.uy; Path=/; Expires=Wed, 10 Jul 2024 23:55:05 GMT; HttpOnly; Secure; SameSite=None
Siteisocode: UY
X-Amz-Cf-Id: _qgc8jxiUcUyaP-GyX4z1piCwjQkIuCg7x2yXQIR3o5qYMTYPo84Pw==
Content-Type: text/html; charset=utf-8
X-Amz-Cf-Pop: EWR53-P1
X-Request-Id: 259adbfb-ea35-49a4-b8eb-0e1e0c3a23c5
Cache-Control: public,max-age=3600
Referrer-Policy: no-referrer-when-downgrade
X-Is-Search-Bot: true
X-Redirect-Cause: SEO_CANONICAL
X-Xss-Protection: 1; mode=block
Accept-Ch-Lifetime: 60
X-Download-Options: noopen
Reporting-Endpoints: csp-endpoint="https://events.mercadolibre.com/csp/v2/reports?identifier=phl473rvslp-_4d-XXJ1aZvEcUWUIlR68WOO8dode4at7FkKPpyolItQpD6isTqa&user_id=&request_id=259adbfb-ea35-49a4-b8eb-0e1e0c3a23c5"
X-Request-Device-Id: 259adbfb-ea35-49a4-b8eb-0e1e0c3a23c5
X-Navigation-Version: layout-5.12.2
X-Content-Type-Options: nosniff
X-Dns-Prefetch-Control: on
Content-Security-Policy: script-src 'nonce-ezZq6xplBIapiLU0Hq9cHw==' 'strict-dynamic' https: 'unsafe-inline' 'report-sample'; base-uri 'none'; report-uri https://events.mercadolibre.com/csp/reports?identifier=phl473rvslp-_4d-XXJ1aZvEcUWUIlR68WOO8dode4at7FkKPpyolItQpD6isTqa&policy_id=9&user_id=&request_id=259adbfb-ea35-49a4-b8eb-0e1e0c3a23c5; report-to csp-endpoint; object-src https://http2.mlstatic.com/ https://mlstaticquic-a.akamaihd.net/
Strict-Transport-Security: max-age=15552000; includeSubDomains
X-Envoy-Upstream-Service-Time: 191
X-Permitted-Cross-Domain-Policies: none
-
Technologies:
Amazon Cloudfront
Amazon Web Services
Envoy
Hsts
Http/3
Tengine
- First snapshot: 8 months, 4 weeks ago
- Latest snapshot: 8 months, 4 weeks ago