travel.latamairlines.com

Risk Score: 0

Last scanned: 2025-09-08 12:16:06 UTC • Duration: 10501ms • View Scan Details →

Total Scans

Missing

CSP Status

Security Headers

CSP Violations

Security Headers

Referrer-Policy

no-referrer-when-downgrade

X-Frame-Options

SAMEORIGIN

X-XSS-Protection

1; mode=block

Permissions-Policy

accelerometer=(), camera=(), geolocation=(), gyroscope=(), magnetometer=(), microphone=(), payment=(), usb=()

X-Content-Type-Options

nosniff

Strict-Transport-Security

max-age=31536000; includeSubDomains; preload

Content Security Policy

Policy Source: header

default-src 'self' *.juniper.es https://h.online-metrix.net https://pci.jpaymentgateway.com https://apps.mypurecloud.com;               script-src 'self' 'unsafe-inline' 'unsafe-eval' https://www.google.com https://www.google-analytics.com https://code.jquery.com https://www.bootstrapcdn.com https://ajax.aspnetcdn.com https://oss.maxcdn.com https://unpkg.com https://cdn.datatables.net https://cdn.jsdelivr.net https://cdnjs.cloudflare.com https://assets.adobedtm.com https://www.braintreegateway.com https://cardinalcommerce.com https://www.gstatic.com https://www.hotjar.com https://cdn.ejuniper.com https://www.latamairlines.com https://pci.jpaymentgateway.com https://api.us1.exponea.com https://resources.digital-cloud.medallia.com https://connect.facebook.net/ https://www.google.es https://region1.analytics.google.com https://apps.mypurecloud.com https://www.googletagmanager.com https://www.google-analytics.com https://s.latamairlines.com https://maps.google.com https://ajax.googleapis.com *.juniper.es https://h.online-metrix.net https://h64.online-metrix.net https://maxcdn.bootstrapcdn.com https://maps.googleapis.com;                style-src 'self' 'unsafe-inline' https://fonts.googleapis.com https://code.jquery.com https://www.bootstrapcdn.com https://cdn.datatables.net https://cdnjs.cloudflare.com https://use.fontawesome.com https://cdn.ejuniper.com https://stackpath.bootstrapcdn.com https://maxcdn.bootstrapcdn.com;                font-src 'self' *.gstatic.com https://www.latamairlines.com https://cdn.ejuniper.com https://maxcdn.bootstrapcdn.com;               img-src 'self' * data: https://cdn.ejuniper.com https://maps.googleapis.com https://travel.latamairlines.com;                object-src 'none';                connect-src 'self' https://apis.google.com https://maps.googleapis.com https://www.google.com https://api-cdn.mypurecloud.com wss://webmessaging.mypurecloud.com https://region1.analytics.google.com https://analytics.google.com https://www.google-analytics.com https://api.us1.exponea.com https://www.googleadservices.com https://www.googletagmanager.com https://www.google-analytics.com/g/collect https://region1.analytics.google.com/g/collect https://apps.mypurecloud.com/ https://cdn.ejuniper.com https://h.online-metrix.net https://api.mypurecloud.com;                frame-ancestors 'self' *.juniper.es;                base-uri 'self';                form-action 'self' https://latamtravel.juniper.es https://www.latamairlines.com https://intranet.juniper.latamtravel.com https://travel.latamairlines.com http://travel.latamairlines.com https://b2b-br.travel.latamairlines.com https://br.travel.latamairlines.com https://b2b-cl.travel.latamairlines.com https://b2b-pe.travel.latamairlines.com https://b2b-staff-br.travel.latamairlines.com https://b2c-parcerias-br.travel.latamairlines.com https://b2b-parcerias-br.travel.latamairlines.com http://cl.travel.latamairlines.com https://pe.travel.latamairlines.com https://b2b-py.travel.latamairlines.com https://test.travel.latamairlines.com;

← Back to Results Scan Again