[NoScript XSS] Sanitised suspicious upload to [https://apply2.ucas.com/*****/PaymentSe ... reResponse] from [https://www.secure**********_script.jsp]: transformed into a download-only GET request
As the message flashed up too briefly on the screen, at the top of firefox, I was unable to read it or take action to allow this to go ahead. Not obvious how to allow this valid cross-script to process! (I ended up having to use IE to process my son's university application...)
3D secure is increasingly used on UK websites. How do you allow this script to be processed? Can it be added to a whitelist manually? It will always be the merchant's site at the top of the page, but you get transferred to the bank for card authorisation.
Please email me if you need the full links.
Unable to process 3D Secure payment as XSS filtered
Unable to process 3D Secure payment as XSS filtered
Mozilla/5.0 (Windows; U; Windows NT 6.0; en-GB; rv:1.9.1.3) Gecko/20090824 Firefox/3.5.3
Re: Unable to process 3D Secure payment as XSS filtered
If you happen to run into something similar again, the message should be viewable from the Error Console.
(Tools | Error Console, or similar.)
(Tools | Error Console, or similar.)
Mozilla/5.0 (Windows; U; Windows NT 5.1; en-US; rv:1.9.1.19) Gecko/20110420 SeaMonkey/2.0.14 Pinball NoScript FlashGot AdblockPlus
Mozilla/5.0 (Windows; U; Windows NT 5.1; en-US; rv:1.9.1.5pre) Gecko/20091102 SeaMonkey/2.0.1pre