Page 1 of 1
yo why is this giving xss error am i being hacked
Posted: Wed Jul 14, 2010 12:22 am
by aardwolf
http://shoryuken.com/wiki/index.php/M._Bison_(SSFIV)
why does this cause xss error i need my m. bison info and i dont know if shoryuken is hackedd do i need to tell them that they are hacked ro something plz help
Re: yo why is this giving xss error am i being hacked
Posted: Wed Jul 14, 2010 7:48 am
by Giorgio Maone
The problem is the name of the page being syntactically equivalent to a javascript method call, like object.method(argument).
It's a false positive, nothing malicious there. You can use the "Unsafe reload" command from the "Options" button.
Re: yo why is this giving xss error am i being hacked
Posted: Wed Jul 14, 2010 11:06 pm
by marco
Giorgio, are you seeing an issue with Picasa Web Albums?
I'm on 1.9.99 and getting XSS filtering alerts on all picasa pages -
example URL:
http://picasaweb.google.com/lh/explore# ... e=pwalogin
[NoScript XSS] Sanitized suspicious request. Original URL [
http://ad-g.doubleclick.net/adi/com.pic ... eralbum_ad] requested from [
http://picasaweb.google.com/meanestdogi ... ocked=true]. Sanitized URL: [
http://xss:xss@ad-g.doubleclick.net/adi ... 7335154770].
Re: yo why is this giving xss error am i being hacked
Posted: Wed Jul 14, 2010 11:26 pm
by Giorgio Maone
marco wrote:Giorgio, are you seeing an issue with Picasa Web Albums?
the
domain=picasaweb.google.com "statement" is likely the culprit.
Just block doubleclick.net (either in NoScript or in Adblock Plus) and you shouldn't get any XSS warning.