CSP Data for: cian.ru

#	Time Frame	Framing Control	TLS Enforce	Content Control	'unsafe-inline'	http / https / *	data:	Diffs	Normalized Policy
0	2017-01-21 - 2017-02-12	True	True	True	True	True	True	0	child-src https:; connect-src https:; default-src https:; font-src data: https:; form-action https:; frame-ancestors https:; img-src blob: data: https:; media-src https:; object-src https:; report-uri report; script-src data: https: 'unsafe-inline' 'unsafe-eval'; style-src https: 'unsafe-inline';
1	2017-02-13 - 2017-12-20	True	True	True	True	True	True	1	child-src https:; connect-src https:; default-src https:; font-src data: https:; form-action https:; frame-ancestors http://webvisor.com https:; img-src blob: data: https:; media-src https:; object-src https:; report-uri report; script-src data: https: 'unsafe-inline' 'unsafe-eval'; style-src https: 'unsafe-inline';
2	2017-12-21 - END	True	True	True	True	True	True	1	child-src https:; connect-src wss: https:; default-src https:; font-src data: https:; form-action https:; frame-ancestors http://webvisor.com https:; img-src blob: data: https:; media-src https:; object-src https:; report-uri report; script-src data: https: 'unsafe-inline' 'unsafe-eval'; style-src https: 'unsafe-inline';

Time Frame

Framing Control

TLS Enforce

Content Control

Third JS Parties

'unsafe-inline'

http / https / *

data:

Diffs

Normalized Policy

2017-01-21 - 2017-02-12

True

True

True

True

True

True

child-src https:; connect-src https:; default-src https:; font-src data: https:; form-action https:; frame-ancestors https:; img-src blob: data: https:; media-src https:; object-src https:; report-uri report; script-src data: https: 'unsafe-inline' 'unsafe-eval'; style-src https: 'unsafe-inline';

2017-02-13 - 2017-12-20

True

True

True

True

True

True

child-src https:; connect-src https:; default-src https:; font-src data: https:; form-action https:; frame-ancestors http://webvisor.com https:; img-src blob: data: https:; media-src https:; object-src https:; report-uri report; script-src data: https: 'unsafe-inline' 'unsafe-eval'; style-src https: 'unsafe-inline';

2017-12-21 - END

True

True

True

True

True

True

child-src https:; connect-src wss: https:; default-src https:; font-src data: https:; form-action https:; frame-ancestors http://webvisor.com https:; img-src blob: data: https:; media-src https:; object-src https:; report-uri report; script-src data: https: 'unsafe-inline' 'unsafe-eval'; style-src https: 'unsafe-inline';