indexo.dev

xplorpay.com

.com crawl

First seen 2026-04-15 · Last seen 2026-05-10 · ok HTTP/1.1 200 1961 ms crawled 2026-05-10

US · 23.185.0.1 · AS54113 Fastly, Inc.

Reputation 94/100 dmarc monitor-only

Classifying

HTML metadata

Title
Embedded payments to scale SaaS platforms | Xplor Pay (formerly Clearent)
Description
We’re not just another processor - we’re an embedded payments partner that helps vertical SaaS platforms scale smarter. (formerly Clearent)
Language
en-US
Canonical
https://xplorpay.com/

Open Graph

url
https://xplorpay.com/
title
Home
locale
en_US
site name
Xplor Pay
description
We’re not just another processor - we’re an embedded payments partner that helps vertical SaaS platforms scale smarter. (formerly Clearent)

Technology

CMS
WordPress
Analytics
  • Google Tag Manager
Cookie consent
  • OneTrust
Social widgets
  • YouTube Embed

Third-party hosts loaded (4)

  • cdn.cookielaw.org×2
  • cdnjs.cloudflare.com×1
  • www.googletagmanager.com×1
  • www.youtube-nocookie.com×1

Social

Registration

Registrar
Amazon Registrar, Inc.
Created
2020-11-23
Expires
2026-11-23 187 days left
Updated
2025-10-19
Name servers
  • ns-1058.awsdns-04.org
  • ns-1822.awsdns-35.co.uk
  • ns-288.awsdns-36.com
  • ns-521.awsdns-01.net

DNS records live

NS
  • ns-1058.awsdns-04.org
  • ns-1822.awsdns-35.co.uk
  • ns-288.awsdns-36.com
  • ns-521.awsdns-01.net
MX
  • 0 xplorpay-com.mail.protection.outlook.com
TXT
Show 8 TXT records
  • 00D80000000MKr0=1TBTP00000007Hg
  • 00D8V000000jOGZ=1TBKj000000GmcL
  • 00DG0000000ls5j=1TBVt00000008bv
  • MS=ms70138928
  • google-site-verification=6C-Iz8dkP9awLccEKfeP-UquwPAZtBZDbNh1n6oSuVc
  • pardot837093=44a5023fd4b1e664fc07e21495303397aa9a25974320ca538ca141e91275f30a
  • pardot837093=6a61c8ff9de9bfa029dc166ac349bb006db7877a6ee258119be725e958a16be9
  • sending_domain837093=b1b255bc5314d6998136b06a9337986644db6b71bad817ed4aebb1ce9ac18c56

Email authentication partial

SPF
v=spf1 include:spf.protection.outlook.com -all
strict (-all)
DMARC
v=DMARC1; p=none;
policy: none (monitoring only)
DKIM
  • selector1: v=DKIM1; k=rsa; p=MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAwDW4/5nb+6TOHOdO8AZsrIzDMROoEzpd2iOOMcT1OLZhAa4SWv4bihuvezP/lXPar/FW24nw0ym0Px…
  • s1: k=rsa; t=s; p=MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAw6H5wamlAahIcdqafNDGTSXiAHr8v/BKYHZavdBjhk4Fka2lZlI0gVJei9wT5SPNsk59ma25TciXqlyc6S…
  • s2: k=rsa; t=s; p=MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA4f8yJU6QmGuesqPQ5KEatMJVOhRJ8rHww1lxwBoMArJhj6bPcpjUBxD032pYO2zDt/6A9ZHFgNNHd46Zey…
selectors probed

Certificate (current)

R13
from 2026-04-13 to 2026-07-12
Expires in 54 days

Full certificate history on crt.sh ↗

HTTP security headers

Header hygiene 80/100 Checked live page: https://xplorpay.com/

present
  • strict-transport-security
  • content-security-policy-report-only
  • x-frame-options
  • x-content-type-options
  • referrer-policy
  • permissions-policy
findings
  • missing Content Security Policy
Header values
referrer-policy
strict-origin-when-cross-origin
x-frame-options
SAMEORIGIN
permissions-policy
geolocation=*, microphone=(), camera=()
x-content-type-options
nosniff
strict-transport-security
max-age=31536000
content-security-policy-report-only
default-src 'self' 'unsafe-inline' data: *.hockeystack.com *.marianatek.com *.cookielaw.org *.chilipiper.com *.googletagmanager.com *.google.com *.gstatic.com *.cloudflare.com *.youtube.com *.youtube-nocookie.com *.vimeo.com *.licdn.com *.facebook.net *.clarity.ms *.google-analytics.com *.hs-scripts.com *.doubleclick.net unpkg.com *.wistia.net;upgrade-insecure-requests;

Links to (6)