Request

GET /wp-json/oembed/1.0/embed?url=https%3A%2F%2Fcertinia.com%2Fapac%2F&format=xml HTTP/2
Host: certinia.com
Accept-Encoding: gzip, deflate, br
Accept: */*
Accept-Language: en-US;q=0.9,en;q=0.8
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/127.0.6533.100 Safari/537.36
Connection: close
Cache-Control: max-age=0
Referer: https://certinia.com/apac/
Origin: https://kuzjzvqrkoho.com

-----------------------

Response

HTTP/2 200 OK
Date: Thu, 12 Sep 2024 03:39:09 GMT
Content-Type: text/xml; charset=UTF-8
Cf-Ray: 8c1cde659a811daa-FRA
Cf-Cache-Status: BYPASS
Access-Control-Allow-Origin: https://kuzjzvqrkoho.com
Allow: GET
Cache-Control: max-age=600, must-revalidate
Link: <https://certinia.com/wp-json/>; rel="https://api.w.org/"
Strict-Transport-Security: max-age=31536000; includeSubDomains
Vary: Accept-Encoding, Accept-Encoding, Accept-Encoding, Accept-Encoding,Cookie
Access-Control-Allow-Credentials: true
Access-Control-Allow-Headers: Authorization, X-WP-Nonce, Content-Disposition, Content-MD5, Content-Type
Access-Control-Allow-Methods: OPTIONS, GET, POST, PUT, PATCH, DELETE
Access-Control-Expose-Headers: X-WP-Total, X-WP-TotalPages, Link
Cf-Apo-Via: origin,qs
Cf-Edge-Cache: cache,platform=wordpress
Content-Security-Policy: default-src 'self' https://play.vidyard.com; connect-src 'self' https://googleads.g.doubleclick.net https://www.google.com https://*.linkedin.com https://*.zi-scripts.com https://*.googlesyndication.com https://*.calibermind.com https://*.visualwebsiteoptimizer.com https://*.clarity.ms https://cdn.linkedin.oribi.io https://*.yoast.com https://*.certinia.com https://*.metarouter.io https://*.6sc.co https://analytics.google.com https://*.6sense.com https://*.mktoutil.com https://*.chilipiper.com https://c.6sc.co https://secure.adnxs.com https://ws.zoominfo.com https://*.pathfactory.com https://bidr.io https://rlcdn.com https://stats.g.doubleclick.net https://*.marketo.com https://munchkin.marketo.net https://*.mktoresp.com https://1x8clt34ex4l3nepm7b15t5f-wpengine.netdna-ssl.com https://bat.bing.com https://cdn.cookielaw.org https://play.vidyard.com https://web-analytics.engagio.com https://www.google-analytics.com https://www.googletagmanager.com https://*.onetrust.com; script-src 'unsafe-inline' 'unsafe-eval' 'self' data: blob: https://*.cloudflareinsights.com https://*.zi-scripts.com https://unpkg.com https://yoast.com https://*.yoast.com https://static.srcspot.com https://*.clarity.ms https://*.calibermind.com https://*.metarouter.io https://www.googleoptimize.com https://js.chilipiper.com https://j.6sc.co https://cdn-app.pathfactory.com https://s.adroll.com https://ws-assets.zoominfo.com https://*.certinia.com https://*.google.com https://www.google-analytics.com https://cdn.syndication.twimg.com https://cdn.jsdelivr.net https://app.cdn.lookbookhq.com https://*.marketo.com https://1x8clt34ex4l3nepm7b15t5f-wpengine.netdna-ssl.com https://play.vidyard.com https://*.netdna-ssl.com https://www.googletagmanager.com https://cdn.cookielaw.org https://cdnjs.cloudflare.com https://code.jquery.com https://maxcdn.bootstrapcdn.com https://*.vidyard.com https://img.en25.com http://ct.capterra.com https://tribl.io https://munchkin.marketo.net https://bat.bing.com https://snap.licdn.com https://a.quora.com https://web-analytics.engagio.com https://googleads.g.doubleclick.net https://dn1f1hmdujj40.cloudfront.net https://platform.twitter.com https://www.gstatic.com https://dev.visualwebsiteoptimizer.com https://ml314.com https://www.googleadservices.com; img-src https: data: https://www.google-analytics.com https://optimize.google.com https://1x8clt34ex4l3nepm7b15t5f-wpengine.netdna-ssl.com; frame-src 'self' mailto: api-cbb17618.duosecurity.com https://*.doubleclick.net https://public-profile.whistic.com https://financialforce.outgrow.us https://financialforce.chilipiper.com https://securityscorecard.com https://player.vimeo.com https://*.certinia.com https://*.twitter.com https://bid.g.doubleclick.net https://*.vidyard.com https://app-sjg.marketo.com https://tribl.io https://*.google.com; font-src 'self' data: https://*.pathfactory.com https://*.netdna-ssl.com https://fonts.gstatic.com https://cdnjs.cloudflare.com https://www.certinia.com https://maxcdn.bootstrapcdn.com https://fonts.gstatic.com; style-src 'self' 'unsafe-inline' https://unpkg.com https://js.chilipiper.com https://*.certinia.com https://cdnjs.cloudflare.com https://*.google.com https://fonts.googleapis.com https://platform.twitter.com https://app.cdn.lookbookhq.com https://1x8clt34ex4l3nepm7b15t5f-wpengine.netdna-ssl.com https://tribl.io https://*.netdna-ssl.com https://www.googletagmanager.com https://code.jquery.com https://gmpg.org https://maxcdn.bootstrapcdn.com https://tribl.io https://cdn.cookielaw.org https://app-sjg.marketo.com https://cdn-app.pathfactory.com; frame-ancestors 'self' https://library.certinia.com; object-src 'none'; upgrade-insecure-requests; worker-src 'self' blob:;
X-Cache: MISS
X-Cache-Group: normal
X-Cacheable: SHORT
X-Content-Type-Options: nosniff
X-Frame-Options: SAMEORIGIN
X-Powered-By: WP Engine
X-Robots-Tag: noindex
X-Xss-Protection: 1
Server: cloudflare

<?xml version="1.0"?>
<oembed><version>1.0</version><provider_name>Certinia</provider_name><provider_url>https://certinia.com</provider_url><author_name>Anthony Calzadilla</author_name><author_url>htt
...[SNIP]...