CSP Data for: tipp24.com

# Time Frame Framing Control TLS Enforce Content Control Third JS Parties 'unsafe-inline' http / https / * data: Diffs Normalized Policy
0
2017-05-09 - 2017-06-02
False
False
True
25
True
False
True
0
child-src *.adform.net api.sovendus.com *.netkauf.de https: dis.eu.criteo.com 'self' *.google.com *.optimizely.com; connect-src https://sentry.io wss://*.hotjar.com https://app.getsentry.com *.usabilla.com 'self' https://*.hotjar.com ws://*.hotjar.com http://*.hotjar.com *.sentry.io *.optimizely.com; default-src 'self' data: blob:; font-src *.gstatic.com data: *.googleapis.com; img-src 'self' data: * blob:; report-uri report; script-src *.tipp24.com data: *.googletagmanager.com *.tipp24.net *.googleapis.com *.tipp24.ie 'self' *.doubleclick.net 'unsafe-eval' blob: *.mxpnl.com https://*.adform.net http://*.adform.net http://*.cloudfront.net www.googleadservices.com *.globalsign.com *.getmdl.io 'unsafe-inline' ws://*.hotjar.com *.google.com *.google-analytics.com https://tracking.m6r.eu *.criteo.net cdn.jsdelivr.net *.cloudflare.com https://*.hotjar.com *.maxymiser.net *.criteo.com *.optimizely.com *.getsentry.com *.gstatic.com https://*.cloudfront.net api.sovendus.com wss://*.hotjar.com *.usabilla.com http://*.hotjar.com; style-src *.gstatic.com data: *.adform.net *.cloudflare.net *.cloudfront.net *.googleapis.com *.getmdl.io 'self' 'unsafe-inline' *.google.com *.optimizely.com; 
1
2017-06-03 - 2017-07-05
False
False
True
26
True
False
True
41
child-src *.adform.net api.sovendus.com *.netkauf.de https: dis.eu.criteo.com 'self' *.google.com *.optimizely.com; connect-src *.getsentry.com *.googletagmanager.com *.criteo.net *.adform.net *.googleapis.com *.facebook.net *.usabilla.com 'self' * *.google.com *.sentry.io *.google-analytics.com *.optimizely.com *.hotjar.com; default-src 'self' data: blob:; font-src *.gstatic.com data: *.googleapis.com; frame-src *.adform.net api.sovendus.com *.netkauf.de https: dis.eu.criteo.com 'self' *.google.com *.optimizely.com; img-src 'self' data: * blob:; report-uri report; script-src *.tipp24.com data: *.googletagmanager.com *.tipp24.net *.googleapis.com *.tipp24.ie 'self' *.doubleclick.net 'unsafe-eval' blob: *.mxpnl.com *.sovendus.com *.hotjar.com *.googleadservices.com *.globalsign.com http://*.adform.net *.getmdl.io 'unsafe-inline' *.google.com *.google-analytics.com *.m6r.eu *.criteo.net cdn.jsdelivr.net *.cloudflare.com *.maxymiser.net *.criteo.com *.optimizely.com *.getsentry.com *.gstatic.com *.adform.net *.cloudfront.net *.facebook.net *.usabilla.com; style-src *.gstatic.com data: *.adform.net *.cloudflare.net *.cloudfront.net *.googleapis.com *.getmdl.io 'self' 'unsafe-inline' *.google.com *.optimizely.com; 
2
2017-07-06 - 2017-08-23
False
False
True
29
True
False
True
10
child-src *.adform.net api.sovendus.com *.netkauf.de *.computop-paygate.com https: dis.eu.criteo.com 'self' *.google.com *.optimizely.com; connect-src *.getsentry.com *.googletagmanager.com *.criteo.net *.adform.net *.trustedshops.com *.facebook.com *.googleapis.com *.facebook.net *.usabilla.com 'self' * *.google.com *.bing.com *.sentry.io *.google-analytics.com *.optimizely.com *.hotjar.com; default-src 'self' data: blob:; font-src *.gstatic.com data: *.trustedshops.com *.googleapis.com; frame-src *.adform.net api.sovendus.com *.netkauf.de *.computop-paygate.com https: dis.eu.criteo.com 'self' *.google.com *.optimizely.com; img-src 'self' data: * blob:; report-uri report; script-src *.tipp24.com data: *.googletagmanager.com *.tipp24.net *.googleapis.com *.tipp24.ie 'self' *.doubleclick.net 'unsafe-eval' blob: *.mxpnl.com *.sovendus.com *.hotjar.com *.googleadservices.com *.globalsign.com http://*.adform.net *.facebook.com *.getmdl.io 'unsafe-inline' *.google.com *.google-analytics.com *.m6r.eu *.criteo.net *.trustedshops.com cdn.jsdelivr.net *.cloudflare.com *.maxymiser.net *.criteo.com *.optimizely.com *.getsentry.com *.gstatic.com *.adform.net *.cloudfront.net *.facebook.net *.usabilla.com *.bing.com; style-src *.gstatic.com data: *.trustedshops.com *.adform.net *.cloudflare.net *.cloudfront.net *.googleapis.com *.getmdl.io 'self' 'unsafe-inline' *.google.com *.optimizely.com; 
3
2017-08-24 - 2017-09-08
False
False
True
32
True
False
True
3
child-src *.adform.net api.sovendus.com *.netkauf.de *.computop-paygate.com https: dis.eu.criteo.com 'self' *.google.com *.optimizely.com; connect-src *.getsentry.com *.googletagmanager.com *.criteo.net *.adform.net *.trustedshops.com *.facebook.com *.googleapis.com *.facebook.net *.usabilla.com 'self' * *.google.com *.bing.com *.sentry.io *.google-analytics.com *.optimizely.com *.hotjar.com; default-src 'self' data: blob:; font-src *.gstatic.com data: *.trustedshops.com *.googleapis.com; frame-src *.adform.net api.sovendus.com *.netkauf.de *.computop-paygate.com https: dis.eu.criteo.com 'self' *.google.com *.optimizely.com; img-src 'self' data: * blob:; report-uri report; script-src *.tipp24.com data: *.googletagmanager.com *.tipp24.net *.googleapis.com *.tipp24.ie 'self' *.doubleclick.net 'unsafe-eval' blob: *.mxpnl.com *.sovendus.com *.hotjar.com *.googleadservices.com *.globalsign.com http://*.adform.net *.facebook.com *.getmdl.io *.mylotto24.com.au *.mylotto24.ie 'unsafe-inline' *.google.com *.google-analytics.com *.m6r.eu *.criteo.net *.trustedshops.com *.mylotto24.co.uk cdn.jsdelivr.net *.cloudflare.com *.maxymiser.net *.criteo.com *.optimizely.com *.getsentry.com *.gstatic.com *.adform.net *.cloudfront.net *.facebook.net *.usabilla.com *.bing.com; style-src *.gstatic.com data: *.trustedshops.com *.adform.net *.cloudflare.net *.cloudfront.net *.googleapis.com *.getmdl.io 'self' 'unsafe-inline' *.google.com *.optimizely.com; 
4
2017-09-09 - 2017-10-16
False
False
True
33
True
False
True
2
child-src *.adform.net api.sovendus.com *.netkauf.de *.computop-paygate.com https: dis.eu.criteo.com 'self' *.google.com *.optimizely.com; connect-src *.getsentry.com *.googletagmanager.com *.criteo.net *.adform.net *.trustedshops.com *.facebook.com *.googleapis.com *.facebook.net *.usabilla.com 'self' * *.onesignal.com *.google.com *.bing.com *.sentry.io *.google-analytics.com *.optimizely.com *.hotjar.com; default-src 'self' data: blob:; font-src *.gstatic.com data: *.trustedshops.com *.googleapis.com; frame-src *.adform.net api.sovendus.com *.netkauf.de *.computop-paygate.com https: dis.eu.criteo.com 'self' *.google.com *.optimizely.com; img-src 'self' data: * blob:; report-uri report; script-src *.tipp24.com data: *.googletagmanager.com *.tipp24.net *.googleapis.com *.tipp24.ie 'self' *.doubleclick.net 'unsafe-eval' blob: *.onesignal.com *.mxpnl.com *.sovendus.com *.hotjar.com *.googleadservices.com *.globalsign.com http://*.adform.net *.facebook.com *.getmdl.io *.mylotto24.com.au *.mylotto24.ie 'unsafe-inline' *.google.com *.google-analytics.com *.m6r.eu *.criteo.net *.trustedshops.com *.mylotto24.co.uk cdn.jsdelivr.net *.cloudflare.com *.maxymiser.net *.criteo.com *.optimizely.com *.getsentry.com *.gstatic.com *.adform.net *.cloudfront.net *.facebook.net *.usabilla.com *.bing.com; style-src *.gstatic.com data: *.trustedshops.com *.adform.net *.cloudflare.net *.cloudfront.net *.googleapis.com *.getmdl.io 'self' 'unsafe-inline' *.google.com *.optimizely.com; 
5
2017-10-17 - 2017-11-18
False
False
True
37
True
False
True
10
child-src *.adform.net api.sovendus.com *.computop-paygate.com *.netkauf.de https: 'self' *.google.com *.criteo.com *.optimizely.com; connect-src *.getsentry.com *.adform.net *.criteo.net *.trustedshops.com *.googletagmanager.com *.facebook.com *.facebook.net *.googleapis.com *.usabilla.com 'self' * *.onesignal.com *.google.com *.bing.com *.sentry.io *.google-analytics.com *.optimizely.com *.hotjar.com; default-src 'self' data: blob:; font-src *.gstatic.com data: *.trustedshops.com *.cloudfront.net *.googleapis.com; frame-src *.adform.net api.sovendus.com *.computop-paygate.com *.netkauf.de https: 'self' *.google.com *.criteo.com *.optimizely.com; img-src 'self' data: * blob:; report-uri report; script-src *.tipp24.com data: *.googletagmanager.com *.tipp24.net *.googleapis.com *.tipp24.ie 'self' *.doubleclick.net 'unsafe-eval' blob: *.onesignal.com *.mxpnl.com *.sovendus.com *.hotjar.com *.yahoo.com *.googleadservices.com *.globalsign.com *.facebook.com *.getmdl.io *.mylotto24.com.au *.mylotto24.ie 'unsafe-inline' userlike-cdn-widgets.s3-eu-west-1.amazonaws.com *.google.com *.google-analytics.com *.m6r.eu *.criteo.net *.trustedshops.com *.mylotto24.co.uk cdn.jsdelivr.net *.cloudflare.com *.maxymiser.net *.criteo.com *.optimizely.com *.getsentry.com *.gstatic.com *.adform.net *.cloudfront.net *.facebook.net *.userlike.com *.usabilla.com *.yimg.com *.bing.com; style-src *.gstatic.com data: *.trustedshops.com *.adform.net *.cloudflare.net *.cloudfront.net *.getmdl.io *.googleapis.com 'self' 'unsafe-inline' *.google.com *.optimizely.com; 
6
2017-11-19 - 2018-02-17
False
False
True
37
True
False
True
1
child-src *.adform.net api.sovendus.com *.computop-paygate.com *.netkauf.de https: 'self' *.google.com *.criteo.com *.optimizely.com; connect-src *.googletagmanager.com *.googleapis.com 'self' * *.onesignal.com *.sentry.io *.hotjar.com *.facebook.com *.taboola.com *.google.com *.google-analytics.com *.criteo.net *.trustedshops.com *.optimizely.com *.getsentry.com *.adform.net *.facebook.net *.usabilla.com *.bing.com; default-src 'self' data: blob:; font-src *.gstatic.com data: *.trustedshops.com *.cloudfront.net *.googleapis.com; frame-src *.adform.net api.sovendus.com *.computop-paygate.com *.netkauf.de https: 'self' *.google.com *.criteo.com *.optimizely.com; img-src 'self' data: * blob:; report-uri report; script-src *.tipp24.com data: *.googletagmanager.com *.tipp24.net *.googleapis.com *.tipp24.ie 'self' *.doubleclick.net 'unsafe-eval' blob: *.onesignal.com *.mxpnl.com *.sovendus.com *.hotjar.com *.yahoo.com *.googleadservices.com *.globalsign.com *.facebook.com *.getmdl.io *.mylotto24.com.au *.mylotto24.ie 'unsafe-inline' userlike-cdn-widgets.s3-eu-west-1.amazonaws.com *.google.com *.google-analytics.com *.m6r.eu *.criteo.net *.trustedshops.com *.mylotto24.co.uk cdn.jsdelivr.net *.cloudflare.com *.maxymiser.net *.criteo.com *.optimizely.com *.getsentry.com *.gstatic.com *.adform.net *.cloudfront.net *.facebook.net *.userlike.com *.usabilla.com *.yimg.com *.bing.com; style-src *.gstatic.com data: *.trustedshops.com *.adform.net *.cloudflare.net *.cloudfront.net *.getmdl.io *.googleapis.com 'self' 'unsafe-inline' *.google.com *.optimizely.com; 
7
2018-02-18 - 2018-06-25
False
False
True
48
True
False
True
151
default-src *.tipp24.com data: *.googletagmanager.com *.tipp24.net *.googleapis.com *.tipp24.ie 'self' *.doubleclick.net 'unsafe-eval' blob: *.appsway.net *.mxpnl.com *.sentry.io *.sovendus.com *.client.optimizely.com *.hotjar.com https://sentry.io *.yahoo.com *.googleadservices.com *.globalsign.com *.facebook.com *.taboola.com *.getmdl.io *.mylotto24.com.au wss://*.mylotto24.co.uk onesignal.com *.bing.com *.mylotto24.ie 'unsafe-inline' *.google.com roktcdn1.akamaized.net *.google-analytics.com *.t.co *.m6r.eu cdn.onesignal.com *.trustedshops.com *.criteo.net *.cloudflare.net apps.rokt.com wss://*.mylotto24.com.au *.mylotto24.co.uk static.ads-twitter.com cdn.jsdelivr.net *.cloudflare.com *.amazonaws.com *.maxymiser.net *.criteo.com *.optimizely.com *.getsentry.com *.gstatic.com *.outbrain.com *.adform.net *.trustpilot.com wss://*.mylotto24.ie *.cloudfront.net wss://*.userlike.com wss://*.hotjar.com *.userlike.com *.facebook.net *.usabilla.com *.yimg.com analytics.twitter.com wss://*.tipp24.com; font-src *.gstatic.com data: *.trustedshops.com *.cloudfront.net *.cloudflare.net *.googleapis.com *.cloudflare.com *.google.com *.google-analytics.com; frame-src *.gstatic.com *.adform.net api.sovendus.com *.trustpilot.com *.computop-paygate.com *.netkauf.de https: *.googleapis.com 'self' http: *.google.com *.criteo.com *.google-analytics.com *.optimizely.com; img-src 'self' data: * blob:; report-uri report; style-src *.tipp24.com data: *.tipp24.net *.googleapis.com *.tipp24.ie 'self' *.getmdl.io *.mylotto24.com.au onesignal.com *.mylotto24.ie 'unsafe-inline' *.google.com *.google-analytics.com cdn.onesignal.com *.trustedshops.com *.cloudflare.net *.mylotto24.co.uk *.cloudflare.com *.optimizely.com *.gstatic.com *.cloudfront.net; 
8
2018-06-26 - 2018-08-15
False
False
True
48
True
False
True
1
default-src *.tipp24.com data: *.googletagmanager.com *.tipp24.net *.googleapis.com *.tipp24.ie 'self' *.doubleclick.net 'unsafe-eval' blob: *.appsway.net *.mxpnl.com *.sentry.io *.sovendus.com *.client.optimizely.com *.hotjar.com https://sentry.io *.yahoo.com *.googleadservices.com *.globalsign.com *.facebook.com *.taboola.com *.getmdl.io *.mylotto24.com.au wss://*.mylotto24.co.uk onesignal.com *.bing.com *.mylotto24.ie 'unsafe-inline' *.google.com roktcdn1.akamaized.net *.google-analytics.com *.t.co *.m6r.eu cdn.onesignal.com *.trustedshops.com *.criteo.net *.cloudflare.net apps.rokt.com wss://*.mylotto24.com.au *.mylotto24.co.uk static.ads-twitter.com cdn.jsdelivr.net *.cloudflare.com *.amazonaws.com *.maxymiser.net *.criteo.com *.optimizely.com *.getsentry.com *.gstatic.com *.outbrain.com *.adform.net *.trustpilot.com wss://*.mylotto24.ie *.cloudfront.net wss://*.userlike.com wss://*.hotjar.com *.userlike.com *.facebook.net *.usabilla.com *.yimg.com analytics.twitter.com wss://*.tipp24.com; font-src *.gstatic.com data: *.trustedshops.com *.cloudfront.net *.cloudflare.net *.googleapis.com *.cloudflare.com *.google.com *.google-analytics.com; frame-src *.gstatic.com *.adform.net api.sovendus.com *.trustpilot.com *.computop-paygate.com *.netkauf.de https: *.googleapis.com 'self' *.google.com *.criteo.com *.google-analytics.com *.optimizely.com; img-src 'self' data: * blob:; report-uri report; style-src *.tipp24.com data: *.tipp24.net *.googleapis.com *.tipp24.ie 'self' *.getmdl.io *.mylotto24.com.au onesignal.com *.mylotto24.ie 'unsafe-inline' *.google.com *.google-analytics.com cdn.onesignal.com *.trustedshops.com *.cloudflare.net *.mylotto24.co.uk *.cloudflare.com *.optimizely.com *.gstatic.com *.cloudfront.net; 
9
2018-08-16 - 2018-12-05
False
False
True
48
True
False
True
4
default-src *.tipp24.com data: *.googletagmanager.com *.tipp24.net *.googleapis.com *.tipp24.ie 'self' *.doubleclick.net 'unsafe-eval' blob: *.appsway.net *.mxpnl.com *.sentry.io *.sovendus.com *.client.optimizely.com *.hotjar.com https://sentry.io *.yahoo.com *.googleadservices.com *.globalsign.com *.facebook.com *.taboola.com *.getmdl.io wss://*.mylotto24.co.uk *.bing.com onesignal.com *.mylotto24.ie 'unsafe-inline' *.google.com roktcdn1.akamaized.net *.google-analytics.com *.t.co *.m6r.eu cdn.onesignal.com *.trustedshops.com *.criteo.net *.cloudflare.net apps.rokt.com *.mylotto24.co.uk static.ads-twitter.com cdn.jsdelivr.net *.cloudflare.com *.amazonaws.com *.maxymiser.net *.ad-srv.net *.criteo.com *.optimizely.com *.getsentry.com *.gstatic.com *.outbrain.com *.adform.net *.trustpilot.com wss://*.mylotto24.ie *.cloudfront.net wss://*.userlike.com wss://*.hotjar.com *.userlike.com *.facebook.net *.usabilla.com *.yimg.com analytics.twitter.com wss://*.tipp24.com; font-src *.gstatic.com data: *.trustedshops.com *.cloudfront.net *.cloudflare.net *.googleapis.com *.cloudflare.com *.google.com *.google-analytics.com; frame-src *.gstatic.com *.adform.net api.sovendus.com *.trustpilot.com *.computop-paygate.com *.netkauf.de https: *.googleapis.com 'self' *.google.com *.criteo.com *.google-analytics.com *.optimizely.com; img-src 'self' data: * blob:; report-uri report; style-src *.tipp24.com data: *.tipp24.net *.googleapis.com *.tipp24.ie 'self' *.getmdl.io onesignal.com *.mylotto24.ie 'unsafe-inline' *.google.com *.google-analytics.com cdn.onesignal.com *.trustedshops.com *.cloudflare.net *.mylotto24.co.uk *.cloudflare.com *.optimizely.com *.gstatic.com *.cloudfront.net; 
10
2018-12-06 - 2018-12-27
False
False
True
50
True
False
True
20
default-src *.tipp24.com data: *.googletagmanager.com *.dwin1.com *.googleapis.com 'self' *.doubleclick.net 'unsafe-eval' blob: *.appsway.net *.mxpnl.com *.sentry.io *.sovendus.com *.client.optimizely.com *.hotjar.com https://sentry.io *.zopim.com *.yahoo.com *.zdassets.com *.googleadservices.com *.globalsign.com *.facebook.com *.taboola.com *.getmdl.io *.bing.com onesignal.com 'unsafe-inline' *.google.com roktcdn1.akamaized.net *.google-analytics.com *.t.co *.m6r.eu mylotto24.frontend.zig.services *.trustedshops.com cdn.onesignal.com *.criteo.net *.cloudflare.net apps.rokt.com *.zopim.io wss://*.zopim.com static.ads-twitter.com cdn.jsdelivr.net *.cloudflare.com *.amazonaws.com *.maxymiser.net *.ad-srv.net *.criteo.com *.optimizely.com *.getsentry.com *.gstatic.com *.outbrain.com *.adform.net *.trustpilot.com *.cloudfront.net wss://*.userlike.com wss://*.hotjar.com *.userlike.com *.facebook.net *.zendesk.com *.usabilla.com *.yimg.com analytics.twitter.com wss://*.tipp24.com wss://*.zendesk.com; font-src *.zopim.com *.gstatic.com data: *.trustedshops.com *.cloudfront.net *.cloudflare.net *.googleapis.com *.cloudflare.com *.google.com *.google-analytics.com; frame-src *.gstatic.com *.adform.net api.sovendus.com *.trustpilot.com *.computop-paygate.com *.netkauf.de https: *.googleapis.com 'self' *.google.com *.criteo.com *.google-analytics.com *.optimizely.com; img-src 'self' data: * blob:; report-uri report; style-src *.tipp24.com *.gstatic.com data: *.trustedshops.com mylotto24.frontend.zig.services cdn.onesignal.com *.cloudfront.net *.cloudflare.net *.getmdl.io *.googleapis.com onesignal.com 'self' *.cloudflare.com 'unsafe-inline' *.google.com *.google-analytics.com *.optimizely.com; 
11
2018-12-28 - END
False
False
True
51
True
False
True
1
default-src *.tipp24.com data: *.googletagmanager.com *.dwin1.com *.googleapis.com 'self' *.doubleclick.net 'unsafe-eval' blob: *.appsway.net *.mxpnl.com *.sentry.io *.sovendus.com *.client.optimizely.com *.hotjar.com https://sentry.io *.zopim.com *.yahoo.com *.zdassets.com *.googleadservices.com *.globalsign.com *.facebook.com *.taboola.com *.getmdl.io *.bing.com onesignal.com 'unsafe-inline' *.google.com roktcdn1.akamaized.net *.google-analytics.com *.t.co *.m6r.eu mylotto24.frontend.zig.services *.trustedshops.com cdn.onesignal.com *.criteo.net *.cloudflare.net apps.rokt.com *.zopim.io wss://*.zopim.com static.ads-twitter.com cdn.jsdelivr.net *.cloudflare.com *.amazonaws.com www.redditstatic.com *.maxymiser.net *.ad-srv.net *.criteo.com *.optimizely.com *.getsentry.com *.gstatic.com *.outbrain.com *.adform.net *.trustpilot.com *.cloudfront.net wss://*.userlike.com wss://*.hotjar.com *.userlike.com *.facebook.net *.zendesk.com *.usabilla.com *.yimg.com analytics.twitter.com wss://*.tipp24.com wss://*.zendesk.com; font-src *.zopim.com *.gstatic.com data: *.trustedshops.com *.cloudfront.net *.cloudflare.net *.googleapis.com *.cloudflare.com *.google.com *.google-analytics.com; frame-src *.gstatic.com *.adform.net api.sovendus.com *.trustpilot.com *.computop-paygate.com *.netkauf.de https: *.googleapis.com 'self' *.google.com *.criteo.com *.google-analytics.com *.optimizely.com; img-src 'self' data: * blob:; report-uri report; style-src *.tipp24.com *.gstatic.com data: *.trustedshops.com mylotto24.frontend.zig.services cdn.onesignal.com *.cloudfront.net *.cloudflare.net *.getmdl.io *.googleapis.com onesignal.com 'self' *.cloudflare.com 'unsafe-inline' *.google.com *.google-analytics.com *.optimizely.com;