indexo.dev

shopthecosmopolitan.com

.com crawl

First seen 2026-05-15 · Last seen 2026-05-19 · ok HTTP/1.1 200 660 ms crawled 2026-05-19

US · 3.162.103.128 · AS16509 Amazon.com, Inc.

Reputation 100/100

Classifying

HTML metadata

Title
The Cosmopolitan Hotel Exclusives | Luxury Beds, Bedding, Bath Collection, Fragrance And More
Description
Shop the thrill of The Cosmopolitan home with curated luxuries. Explore our beds and bedding sets, bath and body collection, fragrance selection and more.
Language
en
Canonical
https://www.shopthecosmopolitan.com/
Translations
  • en ×2

Open Graph

url
https://www.shopthecosmopolitan.com/index.aspx
title
The Cosmopolitan Hotel Exclusives | Luxury Beds, Bedding, Bath Collection, Fragrance And More
site name
shopthecosmopolitan.com

Technology

CDN
Amazon CloudFront
Analytics
  • Google Tag Manager

Third-party hosts loaded (4)

  • 514031361.collect.igodigital.com×1
  • ajax.googleapis.com×1
  • www.facebook.com×1
  • www.googletagmanager.com×1

Contact

Phone

Registration

Registrar
Nom-iq Ltd. dba COM LAUDE
Created
2022-11-29
Expires
2026-11-29 192 days left
Updated
2026-02-23
Name servers
  • ns20.digicertdns.com
  • ns21.digicertdns.com
  • ns22.digicertdns.com
  • ns23.digicertdns.net
  • ns24.digicertdns.net
  • ns25.digicertdns.net

DNS records live

NS
  • ns20.digicertdns.com
  • ns21.digicertdns.com
  • ns22.digicertdns.com
  • ns23.digicertdns.net
  • ns24.digicertdns.net
  • ns25.digicertdns.net
MX
  • 1 mx1-us1.ppe-hosted.com
  • 5 mx2-us1.ppe-hosted.com
TXT
  • 5l3p20p3262q4k0br07g05x794qwnjbm
  • ppe-7add96908295698d0cf274dcd39427e816b92912
  • _qeucvzoe77md99e36vy4ahzptxlcguo
Verified for
  • Google
  • Microsoft 365

Email authentication strong

SPF
v=spf1 a:dispatch-us.ppe-hosted.com ip4:3.220.60.13 include:spf.mandrillapp.com include:_spf.smtp.com include:spf.protection.outlook.com ~all
softfail (~all)
DMARC
v=DMARC1; p=reject; sp=reject; aspf=r; rua=mailto:dmarc-report@shopthecosmopolitan.com; ruf=mailto:dmarc-report@shopthecosmopolitan.com; fo=1; pct=100
policy: reject (enforced) · sp=reject
DKIM
  • selector1: v=DKIM1; k=rsa; p=MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEArqSN2EvNr5dhaemV0Tlg5Eik+GrmUF/nY1adh8uhDyHZyFNJn6fkPPDZi5mL9z+lAgim20qS6oPfzg…
selectors probed

Certificate (current)

Sectigo Public Server Authentication CA DV R36
from 2026-01-05 to 2027-02-05
Expires in 260 days

Full certificate history on crt.sh ↗

HTTP security headers

Header hygiene 80/100 Checked live page: https://shopthecosmopolitan.com/

present
  • strict-transport-security
  • content-security-policy
  • x-frame-options
  • x-content-type-options
findings
  • CSP allows unsafe inline scripts/styles
  • CSP uses wildcard sources
  • missing Referrer Policy
  • missing Permissions Policy
Header values
x-frame-options
SAMEORIGIN
x-content-type-options
nosniff
content-security-policy
script-src 'self' 'nonce-Dncd21S0XfiM9tRdKMOK2w==' https://*.googletagmanager.com https://ajax.googleapis.com https://www.google.com http://514031361.collect.igodigital.com https://static-na.payments-amazon.com https://maps.googleapis.com https://cdn.jsdelivr.net https://client.rum.us-east-1.amazonaws.com; style-src 'self' 'unsafe-inline' ; font-src 'self' https://fonts.gstatic.com data:; img-src 'self' https://nova.collect.igodigital.com https://static-na.payments-amazon.com https://m.media-amazon.com https://p.typekit.net https://www.googletagmanager.com https://cdn-assets.affirm.com https://www.google.com; object-src 'none'; frame-src 'self' https://td.doubleclick.net https://*.googletagmanager.com https://www.google.com;
strict-transport-security
max-age=31536000; includeSubDomains; preload

Links to (11)

Linked from (11)