InformAction Forums

NoScripters and WebSec nerds of all lands, unite!
https://forums.informaction.com/

[FIXED] 11.2.12rc5 XSS filter "too much recursion" when clicking links on AMO

https://forums.informaction.com/viewtopic.php?t=26487

Page 1 of 1

[FIXED] 11.2.12rc5 XSS filter "too much recursion" when clicking links on AMO

Posted: Mon Dec 27, 2021 3:33 pm
by barbaz
Clicking e.g. the "Forum" link on https://addons.mozilla.org/en-US/firefo ... /noscript/ results in this XSS warning -

Code: Select all

NoScript detected a potential Cross-Site Scripting attack

from https://addons.mozilla.org to https://outgoing.prod.mozaws.net.

Suspicious data:

too much recursion,(URL) https://outgoing.prod.mozaws.net/v1/8a6b9e607349db8d83719e8645277b4597538997d7a8946bb1515a4ff3f79287/https://noscript.net/forum

Re: 11.2.12rc5 XSS filter "too much recursion" when clicking links on AMO

Posted: Mon Dec 27, 2021 9:44 pm
by Giorgio Maone
Fixed in latest development build, thanks.

v 11.2.12rc6
============================================================
x [XSS] Fixed regression causing "too much recursion" false
positives (thanks barbaz for report)
x [XSS] Precomputed invalid identifier chars regular
expression

Re: 11.2.12rc5 XSS filter "too much recursion" when clicking links on AMO

Posted: Mon Dec 27, 2021 9:47 pm
by barbaz
Confirmed fixed, thanks! Image
All times are UTC
Page 1 of 1

Powered by phpBB® Forum Software © phpBB Limited