InformAction Forums

NoScripters and WebSec nerds of all lands, unite!
https://forums.informaction.com/

[RESOLVED] XSS filter problems on various sites?

https://forums.informaction.com/viewtopic.php?t=23047

Page 1 of 1

[RESOLVED] XSS filter problems on various sites?

Posted: Mon Jul 03, 2017 7:48 pm
by Lizard
With the last few development builds I've noticed an increase of XSS warnings.
These are reproducible with 5.0.6RC6:

http://www.ad.nl/buitenland/taxi-rijdt- ... ~a4a4daee/
https://www.consoleshop.nl/product/7853 ... -snes.html

Also I've noticed I need to reload a page when I load a page on my local lan, even if I've allowed the page.

See the linked screenshot:
Image

Re: XSS filter problems on various sites?

Posted: Mon Jul 03, 2017 8:55 pm
by barbaz
Lizard wrote:Also I've noticed I need to reload a page when I load a page on my local lan, even if I've allowed the page.
Try manually whitelisting the full address with the port -

Code: Select all

http://diskstation:5000

Re: XSS filter problems on various sites?

Posted: Tue Jul 04, 2017 5:35 pm
by Lizard
barbaz wrote:
Lizard wrote:Also I've noticed I need to reload a page when I load a page on my local lan, even if I've allowed the page.
Try manually whitelisting the full address with the port -

Code: Select all

http://diskstation:5000
Thanks, that seems to work. still strange it also works without the port number after a reload.

Re: XSS filter problems on various sites?

Posted: Tue Jul 04, 2017 10:05 pm
by barbaz
You're welcome.

Regarding the XSS warnings:
When this issue occurs, do you see anything related in the Browser Console? (Ctrl-Shift-J)
(if you don't know what's related, turn off CSS warnings and post everything else you see)

Re: XSS filter problems on various sites?

Posted: Wed Jul 05, 2017 3:32 pm
by Archaeopteryx
This seems to hit e.g. downloads on github.com quite often. A download of mozregression-gui.exe triggers the XSS protection while Git-2.13.2-64-bit.exe doesn't. Nothing obvious in the console of the browser toolbox.

Re: XSS filter problems on various sites?

Posted: Wed Jul 05, 2017 4:05 pm
by barbaz
@Archaeopteryx: that might be viewtopic.php?f=10&t=22884

Re: XSS filter problems on various sites?

Posted: Wed Jul 05, 2017 6:00 pm
by Lizard
Here are some logs:
http://www.pcgamer.com/half-life-a-plac ... ease-date/
[NoScript XSS] Sanitized suspicious upload to [https://www.facebook.com/tr/###DATA###SyntaxError: invalid range in character class] from [http://www.pcgamer.com/half-life-a-plac ... _pcgamerfb]: transformed into a download-only GET request.
http://www.ad.nl/buitenland/taxi-rijdt- ... ~a4a4daee/
[NoScript XSS] Sanitized suspicious upload to [https://www.facebook.com/tr/###DATA###SyntaxError: invalid range in character class] from [http://www.ad.nl/buitenland/taxi-rijdt- ... ~a4a4daee/]: transformed into a download-only GET request.

Re: XSS filter problems on various sites?

Posted: Wed Jul 05, 2017 10:57 pm
by barbaz
Does Marking facebook.net as Untrusted make any difference?

Re: XSS filter problems on various sites?

Posted: Tue Jul 11, 2017 9:45 pm
by Lizard
That seems to remove the xss warnings, thnx
All times are UTC
Page 1 of 1

Powered by phpBB® Forum Software © phpBB Limited