1 CONSOLE ERROR: line 4: The XSS Auditor refused to execute a script in 'http://lo
%3E/%3C1/%3Ealert(0)%3C/script%3E%3C/svg%3E' because its source code was found w
ithin the request. The auditor was enabled as the server sent neither an 'X-XSS-
Protection' nor 'Content-Security-Policy' header.
2 CONSOLE ERROR: line -1: Uncaught SyntaxError: Invalid regular expression: missin
3 Ensures regexps are handled in even with nested script blocks.
Issue 1187843005: XSSAuditor: Dont give a pass to subsequent script blocks if first one is empty.
Created 5 years, 6 months ago by Tom Sepez
Modified 5 years, 6 months ago
Reviewers: Mike West
Base URL: svn://svn.chromium.org/blink/trunk