Weird XSS message

Ask for help about NoScript, no registration needed to post
Post Reply
barbaz
Senior Member
Posts: 11086
Joined: Sat Aug 03, 2013 5:45 pm

Weird XSS message

Post by barbaz »

NoScript 5.1.8.4rc2
Waterfox 56.0.3 (also reproducible in Firefox 56.0.2 new profile, but the user-facing XSS notification doesn't display there)

URL: https://www.worldstarhiphop.com/videos/ ... 92TlQ27a6W

Scripts are blocked and I'm seeing this -

Code: Select all

[NoScript XSS] Sanitized suspicious request. Original URL [https://www.facebook.com/plugins/like.php?href=http%3A%2F%2Fwww.worldstarhiphop.com%2Fvideos%2Fvideo.php%3Fv%3DwshhOG51c292TlQ27a6W&layout=button_count&show_faces=false&width=95&action=like&font=verdana&colorscheme=dark&height=20] requested from [https://www.worldstarhiphop.com/videos/video.php?v=wshhOG51c292TlQ27a6W]. Sanitized URL: [https://www.facebook.com/plugins/like.php?href=http%3A%2F%2Fwww.worldstarhiphop.com%2Fvideos%2Fvideo.php%3Fv%3DwshhOG51c292TlQ20a6W%23666806849024151223&layout=button_count&show_faces=false&width=95&action=like&font=verdana&colorscheme=dark&height=20#8504582049936382189].
Comparing the URLs in Meld highlights it like this -
(original URL) https://www.facebook.com/plugins/like.php?href=http%3A%2F%2Fwww.worldstarhiphop.com%2Fvideos%2Fvideo.php%3Fv%3DwshhOG51c292TlQ27a6W&layout=button_count&show_faces=false&width=95&action=like&font=verdana&colorscheme=dark&height=20

(sanitised URL) https://www.facebook.com/plugins/like.php?href=http%3A%2F%2Fwww.worldstarhiphop.com%2Fvideos%2Fvideo.php%3Fv%3DwshhOG51c292TlQ20a6W%23666806849024151223&layout=button_count&show_faces=false&width=95&action=like&font=verdana&colorscheme=dark&height=20#8504582049936382189
Why does it think the number 7 is an XSS attack? Image
*Always* check the changelogs BEFORE updating that important software!
-
Top
kukla
Senior Member
Posts: 321
Joined: Mon May 04, 2009 12:08 am

Re: Weird XSS message

Post by kukla »

What about this one? Only happened once. Blocked first time, next time no XSS popup. 10.1.6.4rc4

Image
Mozilla/5.0 (Macintosh; Intel Mac OS X 10.11; rv:58.0) Gecko/20100101 Firefox/58.0
Top
barbaz
Senior Member
Posts: 11086
Joined: Sat Aug 03, 2013 5:45 pm

Re: Weird XSS message

Post by barbaz »

kukla wrote:What about this one? Only happened once. Blocked first time, next time no XSS popup. 10.1.6.4rc4
That warning maybe a NoScript 10 bug. It's not related to the one I'm asking about.
*Always* check the changelogs BEFORE updating that important software!
-
Top
barbaz
Senior Member
Posts: 11086
Joined: Sat Aug 03, 2013 5:45 pm

Re: Weird XSS message

Post by barbaz »

@kukla Yours looks like the same issue as https://forums.informaction.com/viewtop ... =7&t=24489, please continue discussion of that warning in that thread.
*Always* check the changelogs BEFORE updating that important software!
-
Top
User avatar
Giorgio Maone
Site Admin
Posts: 9526
Joined: Wed Mar 18, 2009 11:22 pm
Location: Palermo - Italy
Contact:
Contact Giorgio Maone

Re: Weird XSS message

Post by Giorgio Maone »

Please check latest development build
v 5.1.6.4rc3
=============================================================
x Fixed XSS false positive on some Facebook embeddings
(thanks barbaz for reporting)
x Fixed edge case origin checks for WebExtensions embedded in
privileged documents
Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:58.0) Gecko/20100101 Firefox/58.0
Top
barbaz
Senior Member
Posts: 11086
Joined: Sat Aug 03, 2013 5:45 pm

Re: Weird XSS message

Post by barbaz »

Giorgio Maone wrote:Please check latest development build
This XSS warning is gone. Thanks Giorgio Image
*Always* check the changelogs BEFORE updating that important software!
-
Top
Post Reply

Return to “NoScript Support”