bytes
private, max-age=0, no-cache, no-store, must-revalidate
keep-alive
gzip
child-src 'self' https://www.googletagmanager.com https://*.liveperson.net https://cdn.appdynamics.com https://*.lpsnmedia.net https://www.facebook.com https://connect.facebook.net https://*.google.com https://widget.trustpilot.com https://*.doubleclick.net https://*.akamaihd.net https://*.translate.naver.net https://www.recaptcha.net https://www.google.com https://www.zenaps.com https://tr.snapchat.com https://tr6.snapchat.com https://www.youtube.com https://*.googlesyndication.com https://mc.yandex.ru blob: https://www.provenance.org https://ln-rules.rewardstyle.com blob: https://*.awin1.com https://*.zenaps.com https://*.criteo.com https://app.qubit.com https://www.pinterest.com https://www.pinterest.co.uk; connect-src 'self' https://*.thcdn.com https://*.ingest.sentry.io https://*.pingdom.net https://*.doubleclick.net https://*.google-analytics.com https://capture.trackjs.com https://fp.zenaps.com https://www.facebook.com https://*.google.com https://*.thehut.net https://privacyportal-eu.onetrust.com https://geolocation.onetrust.com https://cdn.cookielaw.org wss://*.liveperson.net https://the.sciencebehindecommerce.com https://*.akamaihd.net https://*.googleapis.com https://*.trustpilot.com https://*.doubleclick.net https://*.bing.com https://connect.facebook.net https://*.contentsquare.net https://mc.yandex.ru https://ymetrica1.com https://*.parcellab.com https://d3g5d7323c2i6m.cloudfront.net https://d29qb9vav0xwuc.cloudfront.net https://d7c4jjeuqag9w.cloudfront.net https://*.contentsquare.net https://analytics.tiktok.com https://*.criteo.com https://*.pndsn.com https://23q3fg4xjd.execute-api.eu-west-1.amazonaws.com https://*.qubit.com https://*.qubitproducts.com https://horizon-api.www.cultbeauty.co.uk https://api.provenance.org https://*.prod.mplat-ppcprotect.com https://*.lunio.ai data: https://*.rlcdn.com https://storyboard.storystream.ai https://content.storystream.ai https://upload.uploadcare.com https://598nyfqkt7.execute-api.eu-west-1.amazonaws.com https://ct.pinterest.com https://static.criteo.net; default-src 'none'; font-src 'self' data: https://*.thcdn.com https://fp.zenaps.com https://cdnjs.cloudflare.com https://fonts.gstatic.com https://fonts.googleapis.com https://yastatic.net https://d7c4jjeuqag9w.cloudfront.net; form-action 'self' https://www.facebook.com https://checkout.cultbeauty.co.uk https://connect.facebook.net https://tr.snapchat.com; frame-ancestors 'self'; img-src 'self' data: https://*.thcdn.com https://col.eum-appdynamics.com https://usage.trackjs.com https://*.lpsnmedia.net https://*.doubleclick.net https://www.google-analytics.com https://*.google.com https://cx.atdmt.com https://www.zenaps.com https:; media-src 'self' https://*.thcdn.com https://*.lpsnmedia.net https://player.vimeo.com https://vod-progressive.akamaized.net https://download-media.akamaized.net https://download-video.akamaized.net https://d7c4jjeuqag9w.cloudfront.net https://media.storystream.ai https://*.cultbeauty.co.uk https://*.vimeocdn.com; object-src 'self' https://*.thcdn.com https://www.youtube.com; report-uri https://csp.thehut.net/cspReport.txt; script-src 'self' 'unsafe-eval' 'unsafe-inline' data: https://*.thcdn.com https://*.thehut.net https://rum-static.pingdom.net https://*.liveperson.net https://*.lpsnmedia.net https://*.doubleclick.net https://static.cdn-apple.com https://*.liveperson.com https://geolocation.onetrust.com https://cdn.cookielaw.org https://www.googletagmanager.com https://fp.zenaps.com https://www.youtube.com https://*.google-analytics.com https://*.google.com https://google.com https://connect.facebook.net https://bat.bing.com https://widget.trustpilot.com https://s.ytimg.com https://www.googletagservices.com https://*.googleapis.com https://www.facebook.com https://www.googleadservices.com https://*.gstatic.com https://*.gstatic.cn https://www.dwin1.com https://seal.digicert.com https://static.criteo.net https://*.criteo.com https://remote.captcha.com https://*.akamaihd.net https://ln-rules.rewardstyle.com https://*.baidu.com https://*.recaptcha.net https://*.sciencebehindecommerce.com https://sc-static.net https://*.shoplooks.com https://slooks.top https://slooks.me https://*.translate.naver.net https://*.microsofttranslator.com https://*.hotjar.com https://*.attn.tv https://*.trustpilot.com https://*.bing.com https://*.doubleclick.net https://static.ads-twitter.com https://analytics.twitter.com https://*.google.co.uk https://google.co.uk https://analytics.tiktok.com https://*.ibytedtos.com https://*.liveperson.com https://tpc.googlesyndication.com https://mc.yandex.com https://mc.yandex.ru https://yastatic.net https://unpkg.com/@provenance/ https://ln-rules.rewardstyle.com https://apps.storystream.ai https://platform.twitter.com https://connect.facebook.net https://www.dwin1.com https://*.awin1.com https://*.zenaps.com https://the.sciencebehindecommerce.com https://*.contentsquare.net https://app.contentsquare.com https://cdn.pubnub.com https://static.goqubit.com https://*.qubit.com https://ucarecdn.com https://s.pinimg.com; style-src 'self' 'unsafe-inline' https://*.thcdn.com https://*.google.com https://*.googleapis.com https://fp.zenaps.com https://cdnjs.cloudflare.com https://www.googletagmanager.com https://*.googleapis.com https://*.translate.naver.net https://*.microsofttranslator.com https://drj5wi2x4lz96.cloudfront.net/css/embed.css https://d7c4jjeuqag9w.cloudfront.net https://cdn.parcellab.com; upgrade-insecure-requests; report-to report-endpoint
text/html;charset=UTF-8
Tue, 09 Jan 2024 12:10:20 GMT
Thu, 01 Jan 1970 00:00:00 GMT
no-cache
unsafe-url
{"group":"report-endpoint","max_age":86400,"endpoints":[{"url":"https://www.cultbeauty.co.uk/cspReport.txt","priority":1,"weight":1}],"include_subdomains":true}
locale_V6=en_GB; Version=1; Domain=.cultbeauty.co.uk; Path=/; Max-Age=31556926; Expires=Wed, 08-Jan-2025 17:59:06 GMT; SameSite=None; Secure, csrf_token=07080362071002699176; Version=1; Path=/; SameSite=None; HttpOnly; Secure, NSC_mc_wtsw_efgbvmu_xfctsw_8010_J=6ad0a3ded745ce343f4c3810557c04b78a03cd68344a0e415fc81506aba1ab4de8f11769;expires=Tue, 09-Jan-2024 15:10:20 GMT;path=/;secure;httponly
max-age=31536000; includeSubDomains; preload
accept-encoding
1.1 varnish, 1.1 varnish
MISS, MISS
0, 0
nosniff
SAMEORIGIN
cache-lon420109-LON, cache-dub4334-DUB
S1704802220.271700,VS0,VE31
1; mode=block; report=/xssProtection.txt
h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
|