OLD | NEW |
1 CONSOLE ERROR: line 8: The XSS Auditor refused to execute a script in 'http://lo
calhost:8000/security/xssAuditor/resources/echo-intertag.pl?wait-for-load=1&q=%3
Cobject%20id=%27object%27%20name=%27plugin%27%20type=%27application/x-blink-test
-plugin%27%3E%3Cparam%20name=%27movie%27%20value=%27http://127.0.0.1:8000/securi
ty/xssAuditor/resources/dummy.swf%27%20/%3E%3Cembed%20id=%27embed%27%20name=%27p
lugin%27%20type=%27application/x-blink-test-plugin%27%20src=%27http://127.0.0.1:
8000/security/xssAuditor/resources/dummy.swf%27%20/%3E%3C/object%3E' because its
source code was found within the request. The auditor was enabled as the server
sent neither an 'X-XSS-Protection' nor 'Content-Security-Policy' header. | 1 CONSOLE ERROR: line 8: The XSS Auditor refused to execute a script in 'http://lo
calhost:8000/security/xssAuditor/resources/echo-intertag.pl?wait-for-load=1&q=%3
Cobject%20id=%27object%27%20name=%27plugin%27%20type=%27application/x-blink-test
-plugin%27%3E%3Cparam%20name=%27movie%27%20value=%27http://127.0.0.1:8000/securi
ty/xssAuditor/resources/dummy.swf%27%20/%3E%3Cembed%20id=%27embed%27%20name=%27p
lugin%27%20type=%27application/x-blink-test-plugin%27%20src=%27http://127.0.0.1:
8000/security/xssAuditor/resources/dummy.swf%27%20/%3E%3C/object%3E' because its
source code was found within the request. The auditor was enabled as the server
did not send an 'X-XSS-Protection' header. |
2 CONSOLE ERROR: line 8: The XSS Auditor refused to execute a script in 'http://lo
calhost:8000/security/xssAuditor/resources/echo-intertag.pl?wait-for-load=1&q=%3
Cobject%20id=%27object%27%20name=%27plugin%27%20type=%27application/x-blink-test
-plugin%27%3E%3Cparam%20name=%27movie%27%20value=%27http://127.0.0.1:8000/securi
ty/xssAuditor/resources/dummy.swf%27%20/%3E%3Cembed%20id=%27embed%27%20name=%27p
lugin%27%20type=%27application/x-blink-test-plugin%27%20src=%27http://127.0.0.1:
8000/security/xssAuditor/resources/dummy.swf%27%20/%3E%3C/object%3E' because its
source code was found within the request. The auditor was enabled as the server
sent neither an 'X-XSS-Protection' nor 'Content-Security-Policy' header. | 2 CONSOLE ERROR: line 8: The XSS Auditor refused to execute a script in 'http://lo
calhost:8000/security/xssAuditor/resources/echo-intertag.pl?wait-for-load=1&q=%3
Cobject%20id=%27object%27%20name=%27plugin%27%20type=%27application/x-blink-test
-plugin%27%3E%3Cparam%20name=%27movie%27%20value=%27http://127.0.0.1:8000/securi
ty/xssAuditor/resources/dummy.swf%27%20/%3E%3Cembed%20id=%27embed%27%20name=%27p
lugin%27%20type=%27application/x-blink-test-plugin%27%20src=%27http://127.0.0.1:
8000/security/xssAuditor/resources/dummy.swf%27%20/%3E%3C/object%3E' because its
source code was found within the request. The auditor was enabled as the server
did not send an 'X-XSS-Protection' header. |
3 CONSOLE ERROR: line 8: The XSS Auditor refused to execute a script in 'http://lo
calhost:8000/security/xssAuditor/resources/echo-intertag.pl?wait-for-load=1&q=%3
Cobject%20id=%27object%27%20name=%27plugin%27%20type=%27application/x-blink-test
-plugin%27%3E%3Cparam%20name=%27movie%27%20value=%27http://127.0.0.1:8000/securi
ty/xssAuditor/resources/dummy.swf%27%20/%3E%3Cembed%20id=%27embed%27%20name=%27p
lugin%27%20type=%27application/x-blink-test-plugin%27%20src=%27http://127.0.0.1:
8000/security/xssAuditor/resources/dummy.swf%27%20/%3E%3C/object%3E' because its
source code was found within the request. The auditor was enabled as the server
sent neither an 'X-XSS-Protection' nor 'Content-Security-Policy' header. | 3 CONSOLE ERROR: line 8: The XSS Auditor refused to execute a script in 'http://lo
calhost:8000/security/xssAuditor/resources/echo-intertag.pl?wait-for-load=1&q=%3
Cobject%20id=%27object%27%20name=%27plugin%27%20type=%27application/x-blink-test
-plugin%27%3E%3Cparam%20name=%27movie%27%20value=%27http://127.0.0.1:8000/securi
ty/xssAuditor/resources/dummy.swf%27%20/%3E%3Cembed%20id=%27embed%27%20name=%27p
lugin%27%20type=%27application/x-blink-test-plugin%27%20src=%27http://127.0.0.1:
8000/security/xssAuditor/resources/dummy.swf%27%20/%3E%3C/object%3E' because its
source code was found within the request. The auditor was enabled as the server
did not send an 'X-XSS-Protection' header. |
4 | 4 |
OLD | NEW |