cross-site-scripting by plus.google.com

[hdamm]

Hi.
Since the last update I get a cross-site-scripting error by plus.google.com.
I cannot find a way to say this is ok for me?
hd

[Thrawn]

Can you post the full message from the Browser Console (Ctrl+Shift+J)?

[Guest]

Here you are:

Code: Select all

10:40:25.462 "log" "blocking 0 sites" ui.js:88
10:40:52.049 'none' oder URL erwartet, aber 'alpha(' gefunden.  Fehler beim Verarbeiten des Wertes für 'filter'.  Deklaration ignoriert. rs=AItRSTOP8a23ti6oiW87Oj1nStjUYylyjQ:1
10:40:52.049 Unbekannte Eigenschaft '-moz-border-radius'.  Deklaration ignoriert. rs=AItRSTOP8a23ti6oiW87Oj1nStjUYylyjQ:1
10:40:52.049 Unbekannte Eigenschaft '-moz-box-shadow'.  Deklaration ignoriert. rs=AItRSTOP8a23ti6oiW87Oj1nStjUYylyjQ:1
10:40:55.090 Fehler beim Verarbeiten des Wertes für 'max-width'.  Deklaration ignoriert. posts
10:41:36.525 [NoScript InjectionChecker] HTML injection:
"cn":"i2nkeb","tp":1,"ifrid":"gtn-roster-iframe-id","pu":"https://talkgadget.google.com/u/0/talkgadget/_/"}&ec=["ci:ec",true,true,false]&pvt=AMP3uWZTH7pK7p4JJOtZ5hbYbMb0HL6Q_lmfbQDb2EPdQTSXHvIlysIxzIggEOZs9m8uvNwQQCOrnqszZ5csrehNWaC3elRWmQ&href=
matches <[^\w<>]*(?:[^<>"'\s]*:)?[^\w<>]*(?:\W*s\W*c\W*r\W*i\W*p\W*t|\W*f\W*o\W*r\W*m|\W*s\W*t\W*y\W*l\W*e|\W*s\W*v\W*g|\W*m\W*a\W*r\W*q\W*u\W*e\W*e|(?:\W*l\W*i\W*n\W*k|\W*o\W*b\W*j\W*e\W*c\W*t|\W*e\W*m\W*b\W*e\W*d|\W*a\W*p\W*p\W*l\W*e\W*t|\W*p\W*a\W*r\W*a\W*m|\W*i?\W*f\W*r\W*a\W*m\W*e|\W*b\W*a\W*s\W*e|\W*b\W*o\W*d\W*y|\W*m\W*e\W*t\W*a|\W*i\W*m\W*a?\W*g\W*e?|\W*v\W*i\W*d\W*e\W*o|\W*a\W*u\W*d\W*i\W*o|\W*b\W*i\W*n\W*d\W*i\W*n\W*g\W*s|\W*s\W*e\W*t|\W*a\W*n\W*i\W*m\W*a\W*t\W*e)[^>\w])|(?:<\w|['"])[\s\S]*\b(?:formaction|style|background|src|lowsrc|ping|href|on(?:d(?:e(?:vice(?:(?:orienta|mo)tion|proximity|found|light)|livery(?:success|error)|activate)|r(?:ag(?:e(?:n(?:ter|d)|xit)|(?:gestur|leav)e|start|drop|over)?|op)|i(?:s(?:c(?:hargingtimechange|onnect(?:ing|ed))|abled)|aling)|ata(?:setc(?:omplete|hanged)|(?:availabl|chang)e|error)|urationchange|ownloading|blclick)|Moz(?:M(?:agnifyGesture(?:Update|Start)?|ouse(?:PixelScroll|Hittest))|S(?:wipeGesture(?:Update|Start|End)?|crolledAreaChanged)|(?:(?:Press)?TapGestur|BeforeResiz)e|EdgeUI(?:C(?:omplet|ancel)|Start)ed|RotateGesture(?:Update|Start)?|A(?:udioAvailable|fterPaint))|c(?:o(?:m(?:p(?:osition(?:update|start|end)|lete)|mand(?:update)?)|n(?:t(?:rolselect|extmenu)|nect(?:ing|ed))|py)|a(?:(?:llschang|ch)ed|nplay(?:through)?|rdstatechange)|h(?:(?:arging(?:time)?ch)?ange|ecking)|(?:fstate|ell)change|u(?:echange|t)|l(?:ick|ose))|m(?:o(?:z(?:pointerlock(?:change|error)|(?:orientation|time)change|fullscreen(?:change|error)|network(?:down|up)load)|use(?:(?:lea|mo)ve|o(?:ver|ut)|enter|wheel|down|up)|ve(?:start|end)?)|essage|ark)|s(?:t(?:a(?:t(?:uschanged|echange)|lled|rt)|k(?:sessione|comma)nd|op)|e(?:ek(?:complete|ing|ed)|(?:lec(?:tstar)?)?t|n(?:ding|t))|u(?:ccess|spend|bmit)|peech(?:start|end)|ound(?:start|end)|croll|how)|b(?:e(?:for(?:e(?:(?:scriptexecu|activa)te|u(?:nload|pdate)|p(?:aste|rint)|c(?:opy|ut)|editfocus)|deactivate)|gin(?:Event)?)|oun(?:dary|ce)|l(?:ocked|ur)|roadcast|usy)|a(?:n(?:imation(?:iteration|start|end)|tennastatechange)|fter(?:(?:scriptexecu|upda)te|print)|udio(?:process|start|end)|d(?:apteradded|dtrack)|ctivate|lerting|bort)|DOM(?:Node(?:Inserted(?:IntoDocument)?|Removed(?:FromDocument)?)|(?:CharacterData|Subtree)Modified|A(?:ttrModified|ctivate)|Focus(?:Out|In)|MouseScroll)|r(?:e(?:s(?:u(?:m(?:ing|e)|lt)|ize|et)|adystatechange|pea(?:tEven)?t|movetrack|trieving|ceived)|ow(?:s(?:inserted|delete)|e(?:nter|xit))|atechange)|p(?:op(?:up(?:hid(?:den|ing)|show(?:ing|n))|state)|a(?:ge(?:hide|show)|(?:st|us)e|int)|ro(?:pertychange|gress)|lay(?:ing)?)|t(?:ouch(?:(?:lea|mo)ve|en(?:ter|d)|cancel|start)|ime(?:update|out)|ransitionend|ext)|u(?:s(?:erproximity|sdreceived)|p(?:gradeneeded|dateready)|n(?:derflow|load))|f(?:o(?:rm(?:change|input)|cus(?:out|in)?)|i(?:lterchange|nish)|ailed)|l(?:o(?:ad(?:e(?:d(?:meta)?data|nd)|start)?|secapture)|evelchange|y)|g(?:amepad(?:(?:dis)?connected|button(?:down|up)|axismove)|et)|e(?:n(?:d(?:Event|ed)?|abled|ter)|rror(?:update)?|mptied|xit)|i(?:cc(?:cardlockerror|infochange)|n(?:coming|valid|put))|o(?:(?:(?:ff|n)lin|bsolet)e|verflow(?:changed)?|pen)|SVG(?:(?:Unl|L)oad|Resize|Scroll|Abort|Error|Zoom)|h(?:e(?:adphoneschange|l[dp])|ashchange|olding)|v(?:o(?:lum|ic)e|ersion)change|w(?:a(?:it|rn)ing|heel)|key(?:press|down|up)|(?:AppComman|Loa)d|no(?:update|match)|Request|zoom))\W*=
10:41:36.530 [NoScript XSS] Eine verdächtige Anfrage wurde bereinigt. Original-URL [https://talkgadget.google.com/u/0/talkgadget/_/chat?client=sm&prop=homepage&nav=true&fid=gtn-roster-iframe-id&os=Win32&stime=1388742045735&xpc=%7B%22cn%22%3A%22i2nkeb%22%2C%22tp%22%3A1%2C%22ifrid%22%3A%22gtn-roster-iframe-id%22%2C%22pu%22%3A%22https%3A%2F%2Ftalkgadget.google.com%2Fu%2F0%2Ftalkgadget%2F_%2F%22%7D&ec=%5B%22ci%3Aec%22%2Ctrue%2Ctrue%2Cfalse%5D&pvt=AMP3uWZTH7pK7p4JJOtZ5hbYbMb0HL6Q_lmfbQDb2EPdQTSXHvIlysIxzIggEOZs9m8uvNwQQCOrnqszZ5csrehNWaC3elRWmQ&href=https%3A%2F%2Fplus.google.com%2F_%2Fscs%2Fapps-static%2F_%2Fjs%2Fk%3Doz.home.en_GB.dbrZcVUxTak.O%2Fm%3Db%2Cswc%2Fam%3DAIAJEcAiUZcAAAAAEAo76CYANYEBAMAO%2Frt%3Dh%2Fd%3D1%2Frs%3DAItRSTOw4-km0njbsIKScOG48XQB34TX4Q%3Frel%3D1&pos=l&uiv=2&hl=en-GB&hpc=true&hsm=true&hrc=true&uqp=false&sl=false&mmoleh=36&two=https%3A%2F%2Fplus.google.com&host=1&zx=0.6187130067545595&hb=1] angefordert von [https://plus.google.com/u/0/]. Bereinigte URL: [https://talkgadget.google.com/u/0/talkgadget/_/chat?client=sm&prop=homepage&nav=true&fid=gtn-roster-iframe-id&os=Win32&stime=1388742045735&xpc=%7B%20cn%20%3A%20i2nkeb%20%2C%20tp%20%3A1%2C%20ifrid%20%3A%20gtn-roster-iframe-id%20%2C%20pu%20%3A%20https%3A%2F%2Ftalkgadget.google.com%2Fu%2F0%2Ftalkgadget%2F_%2F%20%7D&ec=%20%20ci%3Aec%20%2Ctrue%2Ctrue%2Cfalse%20&pvt=AMP3uWZTH7pK7p4JJOtZ5hbYbMb0HL6Q_lmfbQ202EPdQTSXHvIlysIxzIggEOZs9m8uvNwQQCOrnqszZ5csrehNWaC3elRWmQ&href=https%3A%2F%2Fplus.google.com%2F_%2Fscs%2Fapps-static%2F_%2Fjs%2Fk%2520oz.home.en_GB.dbrZcVUxTak.O%2Fm%2520b%2Cswc%2Fam%2520AIAJEcAiUZcAAAAAEAo76CYANYEBAMAO%2Frt%2520h%2Fd%25201%2Frs%2520AItRSTOw4-km0njbsIKScOG48XQ204TX4Q%3Frel%3D1%231723483143573457775&pos=l&uiv=2&hl=en-GB&hpc=true&hsm=true&hrc=true&uqp=false&sl=false&mmoleh=36&two=https%3A%2F%2Fplus.google.com&host=1&zx=0.6187130067545595&hb=1#841414272373335954].
10:41:36.645 nsIJSON.decode sollte nicht mehr verwendet werden. Bitte verwenden Sie JSON.parse stattdessen. noscriptService.js:3004
10:41:37.340 Unbekannte Eigenschaft '-moz-box-shadow'.  Deklaration ignoriert. qsignin:2
10:41:37.340 Fehler beim Verarbeiten des Wertes für 'background-image'.  Deklaration ignoriert. qsignin:2
10:41:37.340 Farbe erwartet, aber 'top' gefunden.  Fehler beim Verarbeiten des Wertes für 'background-image'.  Deklaration ignoriert. qsignin:2
10:41:37.341 Fehler beim Verarbeiten des Wertes für '-moz-transition-property'.  Deklaration ignoriert. qsignin:2
10:41:37.341 Fehler beim Verarbeiten des Wertes für 'transition-property'.  Deklaration ignoriert. qsignin:2
10:41:37.341 'none' oder URL erwartet, aber 'alpha(' gefunden.  Fehler beim Verarbeiten des Wertes für 'filter'.  Deklaration ignoriert. qsignin:2
10:41:38.801 [NoScript InjectionChecker] HTML injection:
"cn":"18j4bh","tp":1,"ifrid":"gtn-roster-iframe-id","pu":"https://talkgadget.google.com/u/0/talkgadget/_/"}&ec=["ci:ec",true,true,false]&pvt=AMP3uWZM6rSZRhmSnKiLpcbzV3ApmUUXvo6k-90I4jRy1EaeU-eQv-G6Rrh4WB445KyFa5kmIQS2kRMfhbEyWsyNyU1Yem5_Wg&href=
matches <[^\w<>]*(?:[^<>"'\s]*:)?[^\w<>]*(?:\W*s\W*c\W*r\W*i\W*p\W*t|\W*f\W*o\W*r\W*m|\W*s\W*t\W*y\W*l\W*e|\W*s\W*v\W*g|\W*m\W*a\W*r\W*q\W*u\W*e\W*e|(?:\W*l\W*i\W*n\W*k|\W*o\W*b\W*j\W*e\W*c\W*t|\W*e\W*m\W*b\W*e\W*d|\W*a\W*p\W*p\W*l\W*e\W*t|\W*p\W*a\W*r\W*a\W*m|\W*i?\W*f\W*r\W*a\W*m\W*e|\W*b\W*a\W*s\W*e|\W*b\W*o\W*d\W*y|\W*m\W*e\W*t\W*a|\W*i\W*m\W*a?\W*g\W*e?|\W*v\W*i\W*d\W*e\W*o|\W*a\W*u\W*d\W*i\W*o|\W*b\W*i\W*n\W*d\W*i\W*n\W*g\W*s|\W*s\W*e\W*t|\W*a\W*n\W*i\W*m\W*a\W*t\W*e)[^>\w])|(?:<\w|['"])[\s\S]*\b(?:formaction|style|background|src|lowsrc|ping|href|on(?:d(?:e(?:vice(?:(?:orienta|mo)tion|proximity|found|light)|livery(?:success|error)|activate)|r(?:ag(?:e(?:n(?:ter|d)|xit)|(?:gestur|leav)e|start|drop|over)?|op)|i(?:s(?:c(?:hargingtimechange|onnect(?:ing|ed))|abled)|aling)|ata(?:setc(?:omplete|hanged)|(?:availabl|chang)e|error)|urationchange|ownloading|blclick)|Moz(?:M(?:agnifyGesture(?:Update|Start)?|ouse(?:PixelScroll|Hittest))|S(?:wipeGesture(?:Update|Start|End)?|crolledAreaChanged)|(?:(?:Press)?TapGestur|BeforeResiz)e|EdgeUI(?:C(?:omplet|ancel)|Start)ed|RotateGesture(?:Update|Start)?|A(?:udioAvailable|fterPaint))|c(?:o(?:m(?:p(?:osition(?:update|start|end)|lete)|mand(?:update)?)|n(?:t(?:rolselect|extmenu)|nect(?:ing|ed))|py)|a(?:(?:llschang|ch)ed|nplay(?:through)?|rdstatechange)|h(?:(?:arging(?:time)?ch)?ange|ecking)|(?:fstate|ell)change|u(?:echange|t)|l(?:ick|ose))|m(?:o(?:z(?:pointerlock(?:change|error)|(?:orientation|time)change|fullscreen(?:change|error)|network(?:down|up)load)|use(?:(?:lea|mo)ve|o(?:ver|ut)|enter|wheel|down|up)|ve(?:start|end)?)|essage|ark)|s(?:t(?:a(?:t(?:uschanged|echange)|lled|rt)|k(?:sessione|comma)nd|op)|e(?:ek(?:complete|ing|ed)|(?:lec(?:tstar)?)?t|n(?:ding|t))|u(?:ccess|spend|bmit)|peech(?:start|end)|ound(?:start|end)|croll|how)|b(?:e(?:for(?:e(?:(?:scriptexecu|activa)te|u(?:nload|pdate)|p(?:aste|rint)|c(?:opy|ut)|editfocus)|deactivate)|gin(?:Event)?)|oun(?:dary|ce)|l(?:ocked|ur)|roadcast|usy)|a(?:n(?:imation(?:iteration|start|end)|tennastatechange)|fter(?:(?:scriptexecu|upda)te|print)|udio(?:process|start|end)|d(?:apteradded|dtrack)|ctivate|lerting|bort)|DOM(?:Node(?:Inserted(?:IntoDocument)?|Removed(?:FromDocument)?)|(?:CharacterData|Subtree)Modified|A(?:ttrModified|ctivate)|Focus(?:Out|In)|MouseScroll)|r(?:e(?:s(?:u(?:m(?:ing|e)|lt)|ize|et)|adystatechange|pea(?:tEven)?t|movetrack|trieving|ceived)|ow(?:s(?:inserted|delete)|e(?:nter|xit))|atechange)|p(?:op(?:up(?:hid(?:den|ing)|show(?:ing|n))|state)|a(?:ge(?:hide|show)|(?:st|us)e|int)|ro(?:pertychange|gress)|lay(?:ing)?)|t(?:ouch(?:(?:lea|mo)ve|en(?:ter|d)|cancel|start)|ime(?:update|out)|ransitionend|ext)|u(?:s(?:erproximity|sdreceived)|p(?:gradeneeded|dateready)|n(?:derflow|load))|f(?:o(?:rm(?:change|input)|cus(?:out|in)?)|i(?:lterchange|nish)|ailed)|l(?:o(?:ad(?:e(?:d(?:meta)?data|nd)|start)?|secapture)|evelchange|y)|g(?:amepad(?:(?:dis)?connected|button(?:down|up)|axismove)|et)|e(?:n(?:d(?:Event|ed)?|abled|ter)|rror(?:update)?|mptied|xit)|i(?:cc(?:cardlockerror|infochange)|n(?:coming|valid|put))|o(?:(?:(?:ff|n)lin|bsolet)e|verflow(?:changed)?|pen)|SVG(?:(?:Unl|L)oad|Resize|Scroll|Abort|Error|Zoom)|h(?:e(?:adphoneschange|l[dp])|ashchange|olding)|v(?:o(?:lum|ic)e|ersion)change|w(?:a(?:it|rn)ing|heel)|key(?:press|down|up)|(?:AppComman|Loa)d|no(?:update|match)|Request|zoom))\W*=
10:41:38.805 [NoScript XSS] Eine verdächtige Anfrage wurde bereinigt. Original-URL [https://talkgadget.google.com/u/0/talkgadget/_/chat?client=sm&prop=homepage&nav=true&fid=gtn-roster-iframe-id&os=Win32&stime=1388742051226&xpc=%7B%22cn%22%3A%2218j4bh%22%2C%22tp%22%3A1%2C%22ifrid%22%3A%22gtn-roster-iframe-id%22%2C%22pu%22%3A%22https%3A%2F%2Ftalkgadget.google.com%2Fu%2F0%2Ftalkgadget%2F_%2F%22%7D&ec=%5B%22ci%3Aec%22%2Ctrue%2Ctrue%2Cfalse%5D&pvt=AMP3uWZM6rSZRhmSnKiLpcbzV3ApmUUXvo6k-90I4jRy1EaeU-eQv-G6Rrh4WB445KyFa5kmIQS2kRMfhbEyWsyNyU1Yem5_Wg&href=https%3A%2F%2Fplus.google.com%2F_%2Fscs%2Fapps-static%2F_%2Fjs%2Fk%3Doz.home.en_GB.dbrZcVUxTak.O%2Fm%3Db%2Cprc%2Fam%3DAIAJEcAiUZcAAAAAEAo76CYANYEBAMAO%2Frt%3Dh%2Fd%3D1%2Frs%3DAItRSTOw4-km0njbsIKScOG48XQB34TX4Q%3Frel%3D1&pos=l&uiv=2&hl=en-GB&hpc=true&hsm=true&hrc=true&uqp=false&sl=false&mmoleh=36&two=https%3A%2F%2Fplus.google.com&host=1&zx=0.614835663842466&hb=1] angefordert von [https://plus.google.com/u/0/104600718104833273883/posts]. Bereinigte URL: [https://talkgadget.google.com/u/0/talkgadget/_/chat?client=sm&prop=homepage&nav=true&fid=gtn-roster-iframe-id&os=Win32&stime=1388742051226&xpc=%7B%20cn%20%3A%2018j4bh%20%2C%20tp%20%3A1%2C%20ifrid%20%3A%20gtn-roster-iframe-id%20%2C%20pu%20%3A%20https%3A%2F%2Ftalkgadget.google.com%2Fu%2F0%2Ftalkgadget%2F_%2F%20%7D&ec=%20%20ci%3Aec%20%2Ctrue%2Ctrue%2Cfalse%20&pvt=AMP3uWZM6rSZRhmSnKiLpcbzV3ApmUUXvo6k-90I4jRy1EaeU-eQv-G6Rrh4WB445KyFa5kmIQS2kRMfhbEyWsyNyU1Yem5_Wg&href=https%3A%2F%2Fplus.google.com%2F_%2Fscs%2Fapps-static%2F_%2Fjs%2Fk%2520oz.home.en_GB.dbrZcVUxTak.O%2Fm%2520b%2Cprc%2Fam%2520AIAJEcAiUZcAAAAAEAo76CYANYEBAMAO%2Frt%2520h%2Fd%25201%2Frs%2520AItRSTOw4-km0njbsIKScOG48XQ204TX4Q%3Frel%3D1%237542781476652624680&pos=l&uiv=2&hl=en-GB&hpc=true&hsm=true&hrc=true&uqp=false&sl=false&mmoleh=36&two=https%3A%2F%2Fplus.google.com&host=1&zx=0.614835663842466&hb=1#8243129191093843335].
10:41:38.853 nsIJSON.decode sollte nicht mehr verwendet werden. Bitte verwenden Sie JSON.parse stattdessen. noscriptService.js:3004
10:43:23.959 Tastenereignis ist in manchen Tastaturlayouts nicht verfügbar: Taste="n" Modifikatoren="accel, alt" browser.xul
10:43:23.959 Tastenereignis ist in manchen Tastaturlayouts nicht verfügbar: Taste="t" Modifikatoren="accel,alt" browser.xul
10:43:23.959 Tastenereignis ist in manchen Tastaturlayouts nicht verfügbar: Taste="y" Modifikatoren="accel alt" browser.xul
10:43:23.959 Tastenereignis ist in manchen Tastaturlayouts nicht verfügbar: Taste="x" Modifikatoren="accel alt" browser.xul
10:43:23.959 Tastenereignis ist in manchen Tastaturlayouts nicht verfügbar: Taste="p" Modifikatoren="accel alt" browser.xul
10:43:23.959 Tastenereignis ist in manchen Tastaturlayouts nicht verfügbar: Taste="m" Modifikatoren="accel alt" browser.xul
10:43:23.959 Tastenereignis ist in manchen Tastaturlayouts nicht verfügbar: Taste="a" Modifikatoren="accel alt" browser.xul
10:43:23.959 Tastenereignis ist in manchen Tastaturlayouts nicht verfügbar: Taste="g" Modifikatoren="alt control" browser.xul
10:44:32.744 POST https://plus.google.com/u/0/_/diagnostics/ [HTTP/1.1 200 OK 172ms]

[hdamm]

Thanks.
Seems to be ok now after today's update.

hd