[FIXED] 11.2.12rc5 XSS filter "too much recursion" when clicking links on AMO

Bug reports and enhancement requests
Post Reply
barbaz
Senior Member
Posts: 10847
Joined: Sat Aug 03, 2013 5:45 pm

[FIXED] 11.2.12rc5 XSS filter "too much recursion" when clicking links on AMO

Post by barbaz »

Clicking e.g. the "Forum" link on https://addons.mozilla.org/en-US/firefo ... /noscript/ results in this XSS warning -

Code: Select all

NoScript detected a potential Cross-Site Scripting attack

from https://addons.mozilla.org to https://outgoing.prod.mozaws.net.

Suspicious data:

too much recursion,(URL) https://outgoing.prod.mozaws.net/v1/8a6b9e607349db8d83719e8645277b4597538997d7a8946bb1515a4ff3f79287/https://noscript.net/forum
*Always* check the changelogs BEFORE updating that important software!
-
Top
User avatar
Giorgio Maone
Site Admin
Posts: 9454
Joined: Wed Mar 18, 2009 11:22 pm
Location: Palermo - Italy
Contact:
Contact Giorgio Maone

Re: 11.2.12rc5 XSS filter "too much recursion" when clicking links on AMO

Post by Giorgio Maone »

Fixed in latest development build, thanks.

v 11.2.12rc6
============================================================
x [XSS] Fixed regression causing "too much recursion" false
positives (thanks barbaz for report)
x [XSS] Precomputed invalid identifier chars regular
expression
Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Top
barbaz
Senior Member
Posts: 10847
Joined: Sat Aug 03, 2013 5:45 pm

Re: 11.2.12rc5 XSS filter "too much recursion" when clicking links on AMO

Post by barbaz »

Confirmed fixed, thanks! Image
*Always* check the changelogs BEFORE updating that important software!
-
Top
Post Reply

Return to “NoScript Development”