Potential click-jacking attack at T-Online Musicloade login

[Piano]

Hello, I cannot log into Musicload; when I try it I get the message from No Script, that there's a Potential click-jacking attack with trial of UI-address-change. I'm advised to let it blocked. But now I cannot login.

What can I do?

[Giorgio Maone]

Are you using any 3rd party password manager?
Could you use the "Report" button in the ClearClick warning dialog and tell me the assigned ID?

[Piano]

I don't use any password manager. The last report ID is 489442.

[Giorgio Maone]

Unfortunately this is due to many objects from different sites being overlapped on that page.
The easiest workaround is adding "www.musicload.de" to your noscript.clearClick.exceptions about:config preference.

[Piano]

I'm not very skillful concerning "about:config"; can I also unlock the element on the click-cklear -warning-popup and change the click-clear-protection to "trustable site"?

[Giorgio Maone]

I'm not very skillful concerning "about:config"; can I also unlock the element on the click-cklear -warning-popup and change the click-clear-protection to "trustable site"?

Yes, you can unlock it, but you'll have the same problem next time you start your browser.
Alternatively, you can uncheck the "trusted" box: in this case, ClearClick will protect you only on untrusted sites, which is acceptable but less safe than excepting this site only as suggested above.

[Piano]

Thank you very much for your help!