Page 1 of 1
Where do XSS reports go? What happens when I click report?
Posted: Mon Aug 15, 2016 9:02 pm
by Aristotle 162534
Love the idea that you don't need an account to post for help. Wish more places would do that.
If I'm using NoScript and I get a XSS/ClickJack warning and then click on the button to report it, what happens? Does the Legion of NoScriptors swarm the webadmin for the page and beat them with wet noodly appendages? Or something more mundane like send them an email to know it off?
Re: Where do XSS reports go? What happens when I click repo
Posted: Mon Aug 15, 2016 9:32 pm
by barbaz
Only Giorgio can see the reports. I don't know if he's made aware of them if they're not connected with a forum thread or other exchange with him though, so just to make sure, I'd suggest you post again in this thread describing the problem in detail and including your report ID.
There is no Legion of NoScriptors, and I for one am not Pastafarian. However, if you post about your problem on this forum we Moderators
might be able to find a wet noodly appendage or two to make use of if needed, given
this.
Re: Where do XSS reports go? What happens when I click repo
Posted: Tue Aug 16, 2016 4:32 pm
by Random NoScripter 42
I've run into neverending clickjack errors when going to a Cloudflare enabled site and being CAPTCHA'd to death by CloudFlare. Seems to come and go. Is that on the table to get fixed?
Re: Where do XSS reports go? What happens when I click repo
Posted: Tue Aug 16, 2016 5:07 pm
by barbaz
Random NoScripter 42 wrote:I've run into neverending clickjack errors when going to a Cloudflare enabled site and being CAPTCHA'd to death by CloudFlare. Seems to come and go. Is that on the table to get fixed?
We don't have enough information. Next time you get one of these ClearClick warnings, please report it and post here the report ID.
Also how are you connecting to the Internet?
Re: Where do XSS reports go? What happens when I click repo
Posted: Wed Jan 11, 2017 2:22 am
by Noodly NoScriptor
I run into the Cloudflare wall too, and the XSS popup is really annoying. I'm debating turning it off, since I only get false positives. There's not really a "calm yo tits" button either, but I haven't dug into it.
I get Cloudflare'd while using a commercial VPN and Tor, which is SNAFU AFAIK.
Re: Where do XSS reports go? What happens when I click repo
Posted: Wed Jan 11, 2017 2:36 am
by barbaz
Noodly NoScriptor wrote:There's not really a "calm yo tits" button either, but I haven't dug into it.
I'm not familiar with that expression. Are you looking for a way to temporarily disable XSS protection in these cases? If so, click the "Options" button in the XSS notification and select "Unsafe Reload".