M-Pesa Africa Limited HackerOne
www.mpa.qr.web.m-pesa.com
Endpoints (2 of 2)
Page 1 of 1
Path
Port
Status Code
Content-Length
Title
Resp Headers
/
80
301
167
301 Moved Permanently
Location: https://www.mpa.qr.web.m-pesa.com/
Content-Type: text/html
/
443
200
795
MPesa
Content-Type: text/html
- Path: /
- Port: 80
- Status Code: 301
- Title: 301 Moved Permanently
-
Via: 1.1 9ad14e3f9b528d4215643d5af359b816.cloudfront.net (CloudFront)
Date: Wed, 01 May 2024 02:58:46 GMT
Pragma: no-cache
Server: CloudFront
X-Cache: Redirect from cloudfront
Location: https://www.mpa.qr.web.m-pesa.com/
X-Amz-Cf-Id: ql5CUh8TvYU59iDd0WHK0iuauy0EJQ2iTgVCr6hPMHkhTCiPuE1CtA==
Content-Type: text/html
X-Amz-Cf-Pop: JFK50-P8
Cache-Control: no-store
Content-Length: 167
Referrer-Policy: same-origin
X-Frame-Options: DENY
X-Xss-Protection: 1; mode=block
X-Content-Type-Options: nosniff
Content-Security-Policy: default-src mpesa-qr-code-prod-eu-west-1-data.s3.eu-west-1.amazonaws.com *.m-pesa.com *.gstatic.com *.googleapis.com; script-src 'self' 'unsafe-eval' 'sha256-TTHUbAvA0DWYUe8iBrsE7GLomxAMTAXrJcYitNIV6Ns='; img-src 'self' data: blob: *.m-pesa.com mpesa-qr-code-prod-eu-west-1-data.s3.eu-west-1.amazonaws.com; style-src *.gstatic.com *.googleapis.com *.m-pesa.com; style-src-elem 'sha256-Sii0QzNsQJQwCjn3+0uS4E8PGcWc5/7oeuTuQ3HAt+8=' 'sha256-47DEQpj8HBSa+/TImW+5JCeuQeRkm5NMpJWZG3hSuFU=' *.gstatic.com *.googleapis.com *.m-pesa.com; font-src *.gstatic.com *.googleapis.com
-
First snapshot:
1 year, 4 months ago
-
Latest snapshot:
1 year, 4 months ago
- Path: /
- Port: 443
- Status Code: 200
- Title: MPesa
-
Via: 1.1 4a6fd791b6663fb7a124f5d43d11ba3c.cloudfront.net (CloudFront)
Date: Wed, 01 May 2024 02:58:47 GMT
Etag: "d2b28965194519fdfa154c60a04bd9ce"
Pragma: no-cache
Server: AmazonS3
X-Cache: Error from cloudfront
X-Amz-Cf-Id: EFiPUMnx-a_BOg-2b8Cm1aUacvhUhd-avQeI7ERZkgKMeBrkAaeO8A==
Content-Type: text/html
X-Amz-Cf-Pop: JFK50-P8
Accept-Ranges: bytes
Cache-Control: no-store
Last-Modified: Thu, 22 Sep 2022 04:44:24 GMT
Content-Length: 795
Referrer-Policy: same-origin
X-Frame-Options: DENY
X-Amz-Version-Id: QGs6eiNn3LH9QE4OMa26kHGnt_dYVnLl
X-Xss-Protection: 1; mode=block
X-Content-Type-Options: nosniff
Content-Security-Policy: default-src mpesa-qr-code-prod-eu-west-1-data.s3.eu-west-1.amazonaws.com *.m-pesa.com *.gstatic.com *.googleapis.com; script-src 'self' 'unsafe-eval' 'sha256-TTHUbAvA0DWYUe8iBrsE7GLomxAMTAXrJcYitNIV6Ns='; img-src 'self' data: blob: *.m-pesa.com mpesa-qr-code-prod-eu-west-1-data.s3.eu-west-1.amazonaws.com; style-src *.gstatic.com *.googleapis.com *.m-pesa.com; style-src-elem 'sha256-Sii0QzNsQJQwCjn3+0uS4E8PGcWc5/7oeuTuQ3HAt+8=' 'sha256-47DEQpj8HBSa+/TImW+5JCeuQeRkm5NMpJWZG3hSuFU=' *.gstatic.com *.googleapis.com *.m-pesa.com; font-src *.gstatic.com *.googleapis.com
Strict-Transport-Security: max-age=31536000; includeSubDomains; preload
X-Amz-Server-Side-Encryption: AES256
-
First snapshot:
1 year, 4 months ago
-
Latest snapshot:
1 year, 4 months ago
Page 1 of 1
Path
Port
Status Code
Content-Length
Title
Resp Headers
Location: https://www.mpa.qr.web.m-pesa.com/
Content-Type: text/html
Content-Type: text/html
- Path: /
- Port: 80
- Status Code: 301
- Title: 301 Moved Permanently
-
Via: 1.1 9ad14e3f9b528d4215643d5af359b816.cloudfront.net (CloudFront)
Date: Wed, 01 May 2024 02:58:46 GMT
Pragma: no-cache
Server: CloudFront
X-Cache: Redirect from cloudfront
Location: https://www.mpa.qr.web.m-pesa.com/
X-Amz-Cf-Id: ql5CUh8TvYU59iDd0WHK0iuauy0EJQ2iTgVCr6hPMHkhTCiPuE1CtA==
Content-Type: text/html
X-Amz-Cf-Pop: JFK50-P8
Cache-Control: no-store
Content-Length: 167
Referrer-Policy: same-origin
X-Frame-Options: DENY
X-Xss-Protection: 1; mode=block
X-Content-Type-Options: nosniff
Content-Security-Policy: default-src mpesa-qr-code-prod-eu-west-1-data.s3.eu-west-1.amazonaws.com *.m-pesa.com *.gstatic.com *.googleapis.com; script-src 'self' 'unsafe-eval' 'sha256-TTHUbAvA0DWYUe8iBrsE7GLomxAMTAXrJcYitNIV6Ns='; img-src 'self' data: blob: *.m-pesa.com mpesa-qr-code-prod-eu-west-1-data.s3.eu-west-1.amazonaws.com; style-src *.gstatic.com *.googleapis.com *.m-pesa.com; style-src-elem 'sha256-Sii0QzNsQJQwCjn3+0uS4E8PGcWc5/7oeuTuQ3HAt+8=' 'sha256-47DEQpj8HBSa+/TImW+5JCeuQeRkm5NMpJWZG3hSuFU=' *.gstatic.com *.googleapis.com *.m-pesa.com; font-src *.gstatic.com *.googleapis.com
- First snapshot: 1 year, 4 months ago
- Latest snapshot: 1 year, 4 months ago
- Path: /
- Port: 443
- Status Code: 200
- Title: MPesa
-
Via: 1.1 4a6fd791b6663fb7a124f5d43d11ba3c.cloudfront.net (CloudFront)
Date: Wed, 01 May 2024 02:58:47 GMT
Etag: "d2b28965194519fdfa154c60a04bd9ce"
Pragma: no-cache
Server: AmazonS3
X-Cache: Error from cloudfront
X-Amz-Cf-Id: EFiPUMnx-a_BOg-2b8Cm1aUacvhUhd-avQeI7ERZkgKMeBrkAaeO8A==
Content-Type: text/html
X-Amz-Cf-Pop: JFK50-P8
Accept-Ranges: bytes
Cache-Control: no-store
Last-Modified: Thu, 22 Sep 2022 04:44:24 GMT
Content-Length: 795
Referrer-Policy: same-origin
X-Frame-Options: DENY
X-Amz-Version-Id: QGs6eiNn3LH9QE4OMa26kHGnt_dYVnLl
X-Xss-Protection: 1; mode=block
X-Content-Type-Options: nosniff
Content-Security-Policy: default-src mpesa-qr-code-prod-eu-west-1-data.s3.eu-west-1.amazonaws.com *.m-pesa.com *.gstatic.com *.googleapis.com; script-src 'self' 'unsafe-eval' 'sha256-TTHUbAvA0DWYUe8iBrsE7GLomxAMTAXrJcYitNIV6Ns='; img-src 'self' data: blob: *.m-pesa.com mpesa-qr-code-prod-eu-west-1-data.s3.eu-west-1.amazonaws.com; style-src *.gstatic.com *.googleapis.com *.m-pesa.com; style-src-elem 'sha256-Sii0QzNsQJQwCjn3+0uS4E8PGcWc5/7oeuTuQ3HAt+8=' 'sha256-47DEQpj8HBSa+/TImW+5JCeuQeRkm5NMpJWZG3hSuFU=' *.gstatic.com *.googleapis.com *.m-pesa.com; font-src *.gstatic.com *.googleapis.com
Strict-Transport-Security: max-age=31536000; includeSubDomains; preload
X-Amz-Server-Side-Encryption: AES256
- First snapshot: 1 year, 4 months ago
- Latest snapshot: 1 year, 4 months ago