other

corporate

English

INGRESSCOOKIE

Domain 'www.wembleystadium.com' uses the commercial generic top-level domain (.com); it also runs on subdomain 'www'. Its registrable label 'wembleystadium' stretches across 14 characters holding five vowels versus nine consonants. Segmentation suggests two words: wembley, stadium. Expect seven characters per word on average. 'wembley' most often appears in English. Secondary signals appear in Malay and Norwegian.

html/9a/8a/9a8ae90e-7ec6-4324-9cd4-57c1476d6d89_fallback.html.gz

Events | Experiences by Wembley Stadium

html/9a/8a/9a8ae90e-7ec6-4324-9cd4-57c1476d6d89.html.gz

default-src 'self' 'unsafe-inline' 'unsafe-eval' data: https://*.sitecorecloud.io/ https://*.cloudfront.net/ https://*.hotjar.io/ https://*.hotjar.com/ wss://ws.hotjar.com/ https://*.3ddigitalvenue.com/ https://thefa.jotform.com/ https://*.ecal.com/ https://cdn.livechatinc.com/tracking.js https://*.livechatinc.com/ https://*.livechat-files.com/ https://*.livechat-static.com/ https://region1.analytics.google.com/ https://player.vimeo.com/ https://tagmanager.google.com/ https://forms-eu1.hscollectedforms.net/collected-forms/v1/config/json https://js-eu1.hs-banner.com/v2/26048079/banner.js  https://js-eu1.usemessages.com/conversations-embed.js https://*.lfeeder.com https://*.clarity.ms/ https://ldynamicspublicapi.leadforensics.com  https://webeo-web-content.s3-eu-west-1.amazonaws.com/ https://cdn.jsdelivr.net https://js-eu1.hs-analytics.net/ https://*.hubspot.com/ https://px4.ads.linkedin.com/ https://match.adsrvr.org/ https://insight.adsrvr.org/ https://cdn.linkedin.oribi.io/ https://secure.leadforensics.com/ https://js.adsrvr.org/up_loader.1.1.0.js https://www.googleadservices.com/pagead/conversion_async.js https://servedby.flashtalking.com/ https://connect.facebook.net/ https://bat.bing.com/ https://*.doubleclick.net/ddm https://snap.licdn.com/ https://js.adsrvr.org/up_loader.1.1.0.js https://pagead2.googlesyndication.com/ https://js-eu1.hs-banner.com/26048079.js https://js-eu1.hsleadflows.net/leadflows.js https://js-eu1.hscollectedforms.net/collectedforms.js https://js-eu1.hs-analytics.net/analytics/1666790100000/26048079.js https://servedby.flashtalking.com https://ssl.google-analytics.com https://*.clubwembley.com https://*.wembleystadium.com  https://*.hs-scripts.com https://*.onetrust.com https://www.google.com https://www.gstatic.com https://www.youtube.com https://maps.googleapis.com https://apps.sitecore.net https://*.wembleystadium.com https://*.blob.core.windows.net https://*.fontawesome.com https://www.googletagmanager.com https://ajax.googleapis.com https://code.jquery.com https://*.google-analytics.com https://*.doubleclick.net https://*.addthis.com https://z.moatads.com https://v1.addthisedge.com; img-src 'self' data: https://img.youtube.com/ https://ssl.gstatic.com/ https://*.lfeeder.com https://*.clarity.ms/ https://forms-eu1.hsforms.com https://*.hubspot.com/ https://www.linkedin.com/ https://px.ads.linkedin.com https://www.facebook.com/ https://bat.bing.com/ https://www.google.nl/ https://*.livechatinc.com/ https://*.livechat-files.com/ https://*.livechat-static.com/ https://*.clubwembley.com  https://*.hs-scripts.com https://*.onetrust.com https://*.thefa.com https://cdn.thefa.com https://maps.gstatic.com https://*.wembleystadium.com https://maps.googleapis.com https://*.blob.core.windows.net https://ssl.google-analytics.com https://www.google.com https://www.google.co.uk https://www.google-analytics.com; style-src 'self' 'unsafe-inline' https://*.ecal.com/ https://tagmanager.google.com/ https://webeo-web-content.s3-eu-west-1.amazonaws.com https://*.livechatinc.com/ https://cdn.livechatinc.com/tracking.js https://*.clubwembley.com  https://*.hs-scripts.com https://fonts.googleapis.com https://*.wembleystadium.com https://*.blob.core.windows.net; font-src 'self' 'unsafe-inline'  https://cdn.livechatinc.com https://fonts.gstatic.com https://*.wembleystadium.com https://*.blob.core.windows.net https://*.fontawesome.com https://www.googletagmanager.com; upgrade-insecure-requests; block-all-mixed-content;

appId=cid-v1:c4b20d8d-fa56-4d22-9343-ef644b6a1e6a

HSTS header missing - vulnerable to protocol downgrade attacks

CSP header missing - vulnerable to XSS attacks

child-src https:  chrome-untrusted://new-tab-page/ chrome-untrusted://ntp-microsoft-auth/;connect-src chrome://resources chrome://theme 'self';default-src 'self';font-src chrome://resources 'self';img-src chrome://resources chrome://theme chrome://image chrome://favicon2 chrome://app-icon chrome://extension-icon chrome://fileicon blob: data: 'self';object-src 'none';require-trusted-types-for 'script';script-src chrome://resources chrome://webui-test 'self';style-src chrome://resources chrome://theme 'self' 'unsafe-inline';trusted-types parse-html-subset sanitize-inner-html static-types webui-test-script webui-test-html polymer-html-literal polymer-template-event-attribute-policy lit-html-desktop;frame-ancestors 'none';

child-src 'none';object-src 'none';require-trusted-types-for 'script';script-src chrome://resources 'self';trusted-types;worker-src blob: 'self';frame-ancestors 'none';

child-src 'none';object-src 'none';require-trusted-types-for 'script';script-src chrome://resources 'self';trusted-types;frame-ancestors 'none';

base-uri 'none';child-src https:;form-action https://ogs.google.com https://*.corp.google.com;object-src 'none';script-src 'self' 'unsafe-inline' https:;frame-ancestors chrome://new-tab-page/

Register SPA

WEMBLEYSTADIUM.COM

Script

Open-Graph-Protocol

Cloudflare

reCAPTCHA

Font Awesome

Google Tag Manager

Cloudflare Turnstile

OneTrust

Lead Forensics

HubSpot CMS

✅ Low Risk - https://www.wembleystadium.com/experiences/events/2025/carabao-cup-final

Requests	IP Address	Location	AS Autonomous System
2	13.107.213.44	United States	AS8075MICROSOFT-CORP-MSN-AS-BLOCK
0	13.107.246.44	United States	AS8075MICROSOFT-CORP-MSN-AS-BLOCK
0	2620:1ec:bdf::44	United States	AS8075MICROSOFT-CORP-MSN-AS-BLOCK
0	2620:1ec:46::44	United States	AS8075MICROSOFT-CORP-MSN-AS-BLOCK
2	4	-	-

Security Scan Report: www.wembleystadium.com

Summary

AI Security Verdict

Safe Website

Safety Factors

Details

Screenshot

Page Load Overview

Language Analysis

Primary Language

Detection Details

Website Classification

Primary Category

All Detected Categories

Detected Features

Domain & IP Information

Detected Technologies9

Content Similarity HashesFor malware variant detection

TLSH (Trend Micro Locality Sensitive Hash)

ssdeep (Context Triggered Piecewise Hashing)

sdhash (Similarity Digest Hashing)

Image Hashes

Perceptual Hashes

Other Hashes

Scan History