Search found 3 matches
- Tue Apr 22, 2014 9:10 pm
- Forum: NoScript Support
- Topic: Why Anti-XSS for two sites in the same trusted domain?
- Replies: 6
- Views: 4462
Re: Why Anti-XSS for two sites in the same trusted domain?
Would you like to post [the regular expression] here so that others can review it? When it comes to regex, it's wise to have many eyes. I believe my regular expression ^@https://my\.ameriprise\.com/ means that NoScript will allow my.ameriprise.com as an origin site to inject Javascript code into an...
- Mon Apr 21, 2014 6:13 pm
- Forum: NoScript Support
- Topic: Why Anti-XSS for two sites in the same trusted domain?
- Replies: 6
- Views: 4462
Re: Why Anti-XSS for two sites in the same trusted domain?
Thanks, barbaz, for pointing me toward a fruitful path. As a newbie it took me a while to decode “see the xss sticky in this forum.” I assume you meant the support topic “Re: Need help with XSS resp it's RegEx.” Since I saw no visible indication that the topic is sticky, and since the topic focuses ...
- Sat Apr 19, 2014 8:35 pm
- Forum: NoScript Support
- Topic: Why Anti-XSS for two sites in the same trusted domain?
- Replies: 6
- Views: 4462
Why Anti-XSS for two sites in the same trusted domain?
I am trying to log in to my account at https://www.ameriprise.com/default-client.asp. I have ameriprise.com in the NoScript Whitelist of trusted sites. I enter my User ID and Password and press the login button. NoScript responds that it “filtered a potential cross-site scripting (XSS) attempt from ...