pandorashop.mt

Date: Sun, 31 May 2026 14:01:42 GMT
Content-Type: text/html; charset=UTF-8
Connection: keep-alive
Server: cloudflare
location: https://www.pandorashop.mt/
Set-Cookie: PHPSESSID=ekcpu561sm06dtd3d5qjsfpblv; expires=Sun, 31 May 2026 15:01:42 GMT; Max-Age=3600; path=/; domain=pandorashop.mt; secure; HttpOnly; SameSite=Lax, amga4_customer=%7B%22customerGroup%22%3A%22NOT%20LOGGED%20IN%22%2C%22customerId%22%3Anull%7D; expires=Mon, 31 May 2027 14:01:42 GMT; Max-Age=31536000; path=/; domain=pandorashop.mt; secure; SameSite=Lax
pragma: no-cache
Cache-Control: max-age=0, must-revalidate, no-cache, no-store
expires: Sat, 31 May 2025 14:01:42 GMT
content-security-policy-report-only: font-src www.paypalobjects.com fonts.gstatic.com use.typekit.net *.typekit.net *.gstatic.com https://www.googletagmanager.com *.googleapis.com *.bootstrapcdn.com *.cloudflare.com 'self' data: *.hotjar.com *.hotjar.io data: 'self' 'unsafe-inline'; form-action pilot-payflowlink.paypal.com www.paypal.com www.sandbox.paypal.com *.paypal.com *.cardinalcommerce.com 3ds-secure.cardcomplete.com www.clicksafe.lloydstsb.com pay.activa-card.com *.wirecard.com acs.sia.eu *.touchtechpayments.com www.securesuite.co.uk rsa3dsauth.com *.monzo.com *.arcot.com *.wlp-acs.com * www.facebook.com *.oppwa.com oppwa.com *.mastercard.com *.iesnare.com *.requirejs.org *.visa.com 'self' connect.facebook.net graph.facebook.com business.facebook.com test.saferpay.com www.saferpay.com saferpay.com 'self' 'unsafe-inline'; frame-ancestors 'self'; frame-src fast.amc.demdex.net *.adobe.com bid.g.doubleclick.net *.youtube.com *.youtube-nocookie.com www.paypal.com www.sandbox.paypal.com pilot-payflowlink.paypal.com www.paypalobjects.com player.vimeo.com https://www.google.com/recaptcha/ *.braintreegateway.com *.paypal.com google.com *.google.com c.paypal.com checkout.paypal.com assets.braintreegateway.com pay.google.com *.cardinalcommerce.com * *.doubleclick.net *.googlesyndication.com *.oppwa.com oppwa.com *.mastercard.com *.iesnare.com *.requirejs.org *.visa.com www.facebook.com connect.facebook.net graph.facebook.com business.facebook.com www.commercepartnerhub.com test.saferpay.com www.saferpay.com saferpay.com 'self' 'unsafe-inline'; img-src data: assets.adobedtm.com amcglobal.sc.omtrdc.net dpm.demdex.net cm.everesttech.net *.adobe.com widgets.magentocommerce.com www.googleadservices.com *.google-analytics.com googleads.g.doubleclick.net www.google.com bid.g.doubleclick.net *.analytics.google.com www.googletagmanager.com t.paypal.com www.paypal.com www.paypalobjects.com fpdbs.paypal.com fpdbs.sandbox.paypal.com *.vimeocdn.com i.ytimg.com *.youtube.com p.typekit.net *.paypal.com *.typekit.net *.gstatic.com validator.swagger.io www.sandbox.paypal.com b.stats.paypal.com dub.stats.paypal.com assets.braintreegateway.com c.paypal.com checkout.paypal.com 'self' data: *.googleapis.com *.openstreetmap.org *.googlesyndication.com *.google.com *.google.rs *.google.hr *.google.ba *.google.si *.google.bg *.google.me *.google.mk *.google.nl *.google.de *.google.be *.google.fr *.googleadservices.com www.facebook.com trengo.s3.eu-central-1.amazonaws.com ecom-stage.iutecredit.mk ecom.iutecredit.mk ebizmarts-website.s3.amazonaws.com downloads.mailchimp.com gallery.mailchimp.com form-assets.mailchimp.com *.oppwa.com oppwa.com *.mastercard.com *.iesnare.com *.requirejs.org *.visa.com magefan.com cm.magefan.com *.disqus.com connect.facebook.net graph.facebook.com business.facebook.com *.cmi.co.ma *.iprom.net iprom.net yandex.com yandex.md *.yandex.md *.yandex.com yandex.ru *.yandex.ru *.yads.tech yads.tech *.yango.com *.doubleclick.net t.adx.opera.com *.pandorashop.si *.pandorashop.hr *.pandorashop.ba *.pandorashop.rs *.pandorashop.mk *.pandorashop.me *.pandorashop-sa.com *.pandorashop.ma *.pandorashop.mt *.pandorashop-ks.com *.pandorashop.md test.saferpay.com www.saferpay.com saferpay.com data: 'self' 'unsafe-inline'; script-src assets.adobedtm.com *.adobe.com www.googleadservices.com www.google-analytics.com googleads.g.doubleclick.net analytics.google.com www.googletagmanager.com *.newrelic.com *.nr-data.net *.commerce-payment-services.com commerce-payments-sdk.adobe.io www.paypal.com www.sandbox.paypal.com www.paypalobjects.com t.paypal.com s.ytimg.com www.googleapis.com vimeo.com www.vimeo.com *.vimeocdn.com *.youtube.com https://www.gstatic.com/recaptcha/ https://www.google.com/recaptcha/ amcglobal.sc.omtrdc.net *.magento-ds.com use.typekit.net *.typekit.net google.com *.google.com *.cdn-apple.com *.braintreegateway.com js.braintreegateway.com assets.braintreegateway.com c.paypal.com pay.google.com api.braintreegateway.com api.sandbox.braintreegateway.com client-analytics.braintreegateway.com client-analytics.sandbox.braintreegateway.com *.paypal.com songbirdstag.cardinalcommerce.com songbird.cardinalcommerce.com tagmanager.google.com https://www.googletagmanager.com *.googleapis.com *.gstatic.com https://widget-cdn.boxnow.hr *.googlesyndication.com *.googleadservices.com *.google.com *.google.rs *.google.hr *.google.ba *.google.si *.google.bg *.google.me *.google.mk www.facebook.com *.widget.trengo.eu map.gls-croatia.com map.gls-czech.com map.gls-hungary.com map.gls-romania.com map.gls-slovenia.com map.gls-slovakia.com map.gls-serbia.com *.openstreetmap.org ecom-stage.iutecredit.mk ecom.iutecredit.mk chimpstatic.com downloads.mailchimp.com *.list-manage.com form-assets.mailchimp.com *.jquery.com *.oppwa.com oppwa.com *.mastercard.com *.visa.com *.iesnare.com *.requirejs.org *.disqus.com connect.facebook.net graph.facebook.com business.facebook.com *.hotjar.com *.hotjar.io onesignal.com *.onesignal.com *.criteo.com *.adsmurai.com gateway.bankart.si yandex.com yandex.md *.yandex.md *.yandex.com yandex.ru *.yandex.ru *.yads.tech yads.tech *.yango.com *.doubleclick.net t.adx.opera.com *.iprom.net iprom.net static.cloudflareinsights.com test.saferpay.com www.saferpay.com saferpay.com 'self' 'unsafe-inline' 'unsafe-eval'; style-src *.adobe.com fonts.googleapis.com assets.braintreegateway.com https://www.googletagmanager.com tagmanager.google.com *.googleapis.com *.bootstrapcdn.com ecom-stage.iutecredit.mk ecom.iutecredit.mk downloads.mailchimp.com *.oppwa.com oppwa.com *.mastercard.com *.iesnare.com *.requirejs.org *.visa.com onesignal.com *.onesignal.com *.iprom.net iprom.net 'self' 'unsafe-inline'; object-src 'self' 'unsafe-inline'; media-src *.adobe.com static.widget.trengo.eu *.pandorashop.si *.pandorashop.hr *.pandorashop.ba *.pandorashop.rs *.pandorashop.mk *.pandorashop.me *.pandorashop-sa.com *.pandorashop.ma *.pandorashop.mt *.pandorashop-ks.com *.pandorashop.md 'self' 'unsafe-inline'; manifest-src 'self' 'unsafe-inline'; connect-src dpm.demdex.net amcglobal.sc.omtrdc.net *.google-analytics.com www.googleadservices.com *.analytics.google.com www.googletagmanager.com *.newrelic.com *.nr-data.net vimeo.com www.sandbox.paypal.com www.paypalobjects.com www.paypal.com pilot-payflowlink.paypal.com *.adobe.io performance.typekit.net *.sentry.io *.paypal.com google.com *.google.com *.braintreegateway.com *.braintree-api.com api.braintreegateway.com api.sandbox.braintreegateway.com client-analytics.braintreegateway.com client-analytics.sandbox.braintreegateway.com *.cardinalcommerce.com https://www.google-analytics.com https://*.google-analytics.com https://*.analytics.google.com *.googleapis.com https://widget-cdn.boxnow.hr *.openstreetmap.org *.google.com *.google.rs *.google.hr *.google.ba *.google.si *.google.bg *.google.me *.google.mk *.google.nl *.google.de *.google.be *.google.fr *.googlesyndication.com *.doubleclick.net www.facebook.com *.trengo.eu map.gls-croatia.com map.gls-czech.com map.gls-hungary.com map.gls-romania.com map.gls-slovenia.com map.gls-slovakia.com map.gls-serbia.com ecom-stage.iutecredit.mk ecom.iutecredit.mk form-assets.mailchimp.com *.intuit.com *.amazonaws.com *.oppwa.com oppwa.com *.mastercard.com *.iesnare.com *.requirejs.org *.visa.com connect.facebook.net graph.facebook.com business.facebook.com wss://ws.hotjar.com *.hotjar.io yandex.com *.yandex.md *.yandex.com yandex.ru *.yandex.ru *.yads.tech *.yango.com cm.g.doubleclick.net t.adx.opera.com *.pandorashop.si *.pandorashop.hr *.pandorashop.ba *.pandorashop.rs *.pandorashop.mk *.pandorashop.me *.pandorashop-sa.com *.pandorashop.ma *.pandorashop.mt *.pandorashop-ks.com *.pandorashop.md test.saferpay.com www.saferpay.com saferpay.com 'self' 'unsafe-inline'; child-src assets.braintreegateway.com c.paypal.com *.paypal.com http: https: blob: 'self' 'unsafe-inline'; default-src yandex.com yandex.md *.yandex.md *.yandex.com yandex.ru *.yandex.ru *.yads.tech yads.tech *.yango.com *.doubleclick.net t.adx.opera.com test.saferpay.com www.saferpay.com saferpay.com 'self' 'unsafe-inline' 'unsafe-eval'; base-uri 'self' 'unsafe-inline';
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
x-frame-options: SAMEORIGIN
cf-cache-status: DYNAMIC
Speculation-Rules: "/cdn-cgi/speculation"
Server-Timing: cfCacheStatus;desc="DYNAMIC", cfEdge;dur=12,cfOrigin;dur=150
Report-To: {"group":"cf-nel","max_age":604800,"endpoints":[{"url":"https://a.nel.cloudflare.com/report/v4?s=zKUuw1o%2BXXWLHcLocLgAAJm1qex3ozOavxjs3PlvIpbl50X5syTlaXJI%2B2r8vNlMyRsgSUBh3wX4z46uyTN2B0OvN2MU%2FIRPn2%2Ffa7Roc%2BACnWmJ6za%2FmbuaRRpYiEpsUbO6XNAFQPgSeu4Zpg%3D%3D"}]}
Nel: {"report_to":"cf-nel","success_fraction":0.0,"max_age":604800}
CF-RAY: a0468314d90701b7-CDG
alt-svc: h3=":443"; ma=86400