View Single Post
  #1  
Old 27.06.2011, 10:31
clone767
Guest
 
Posts: n/a
Default noscript xss exception http://127.0.0.1:9666/flash/addcrypted2

after reading this thread on the abe exceptions of NoScript for firefox regarding click'n'load, which works just fine, i also noticed that we still need to allow

^h__p://127.0.0.1:9666/flash/addcrypted2

*add tt for the blanks

in the Anti-XSS Protection Exceptions, which saves us from an added noscript click, with right mouse click and xss unsafe reload till the page says sucess

now the question is: is it safe to permanently allow ^h__p://127.0.0.1:9666/flash/addcrypted2 under the xss exceptions of noscript??

Last edited by clone767; 28.06.2011 at 08:56.
Reply With Quote