Search found 2 matches
- Mon Sep 20, 2010 9:09 pm
- Forum: NoScript General
- Topic: "Potential XSS" notification when searching using Ixquick
- Replies: 12
- Views: 7084
Re: "Potential XSS" notification when searching using Ixquic
The server jump is by design and is for load balancing/routing purposes. I note however that NoScript converted the query into a GET request - I would like to point out that IXQuick using POST instead of GET is by design to prevent search terms appearing in web logs - it is an additional privacy mec...
- Mon Sep 20, 2010 7:45 pm
- Forum: NoScript General
- Topic: "Potential XSS" notification when searching using Ixquick
- Replies: 12
- Views: 7084
Re: "Potential XSS" notification when searching using Ixquic
Hi, I raised this as an urgent issue with our technical director today, please see the response below: This is a false alarm. NoScript is simply observing the text SCRIPT embedded in that URL and issuing the warning. You can tell that this Javascript is not actually being executed because if you go ...