indexo.dev

bloomsburycollections.com

.com crawl

First seen 2026-04-20 · Last seen 2026-05-14 · ok HTTP/1.1 200 3173 ms crawled 2026-05-14

DE · 3.77.74.24 · AS16509 Amazon.com, Inc.

Reputation 100/100

Classifying

HTML metadata

Title
Bloomsbury Collections - Home
Description
Bloomsbury collections ebook platform homepage
Language
en

Open Graph

url
https://www.bloomsburycollections.com/collections/

Technology

Server
nginx
Analytics
  • Google Tag Manager
Cookie consent
  • OneTrust

Third-party hosts loaded (6)

  • res.cloudinary.com×8
  • cdnjs.cloudflare.com×2
  • cdn-ukwest.onetrust.com×1
  • d1bxh8uas1mnw7.cloudfront.net×1
  • www.googletagmanager.com×1
  • www.recaptcha.net×1

Social

Registration

Registrar
123-Reg Limited
Created
2013-03-13
Expires
2027-03-13 296 days left
Updated
2025-03-14
Name servers
  • ns-1361.awsdns-42.org
  • ns-1932.awsdns-49.co.uk
  • ns-276.awsdns-34.com
  • ns-848.awsdns-42.net

DNS records live

NS
  • ns-1361.awsdns-42.org
  • ns-1932.awsdns-49.co.uk
  • ns-276.awsdns-34.com
  • ns-848.awsdns-42.net

Email authentication no MX

SPF
not published
DMARC
not published
DKIM
no key found at common selectors

Certificate (current)

Amazon RSA 2048 M01
from 2026-04-18 to 2026-11-02
Expires in 165 days

Full certificate history on crt.sh ↗

HTTP security headers

Header hygiene 85/100 Checked live page: https://www.bloomsburycollections.com/

present
  • strict-transport-security
  • content-security-policy
  • x-frame-options
  • x-content-type-options
  • referrer-policy
  • permissions-policy
findings
  • CSP allows unsafe inline scripts/styles
  • CSP uses wildcard sources
  • weak content type protection
Header values
referrer-policy
strict-origin-when-cross-origin
x-frame-options
SAMEORIGIN
permissions-policy
accelerometer=(),autoplay=(),camera=(),encrypted-media=(self),fullscreen=*,geolocation=*,gyroscope=(),interest-cohort=(),magnetometer=(),microphone=(),midi=(),sync-xhr=*,usb=(),xr-spatial-tracking=()
x-content-type-options
strict-origin-when-cross-origin
content-security-policy
worker-src 'self' blob:; script-src 'self' 'unsafe-inline' 'unsafe-eval' *.vjs.zencdn.net *.altmetric.com *.cloudfront.net *.sspbloomsbury.co.uk *.photoninfotech.com *.googletagmanager.com *.google.com *.facebook.net *.gstatic.com *.test.semantico.net *.recaptcha.net *.cloudinary.com *.onetrust.com *.brightcove.net *.cloudflare.com *.googleapis.com *.star.saas.semcs.net *.3playmedia.com *.zscloud.net; frame-src 'self' *.youtube.com *.brightcove.net *.recaptcha.net *.photoninfotech.com *.sspbloomsbury.com *.worldbank.org *.googletagmanager.com; object-src 'self'; frame-ancestors 'self';
strict-transport-security
max-age=31536000; includeSubDomains; preload

Links to (3)

Linked from (2)