Getting Cross Site Scripting error when using ebay...

Ask for help about NoScript, no registration needed to post
Post Reply
Diffie
Posts: 1
Joined: Tue Jul 27, 2010 7:32 pm

Getting Cross Site Scripting error when using ebay...

Post by Diffie »

Hi,
I am attempting to use an ebay app called Outright, but I am receiving a cross site scripting block when I attempt use it. Attempting to allow the reload does nothing to remove the block. Here are the messages from the Error log.

"[NoScript XSS] Sanitized suspicious upload to [https://secure.outright.com/selling_man ... B0Pg%3D%3D] from [http://usbbo2evopsf3s637jm325m88c9b5g39 ... =535865753]: transformed into a download-only GET request."

secure.outright.com : server does not support RFC 5746, see CVE-2009-3555i

Thanks in advance for your assistance.

Lon
"Diffie"
Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.8) Gecko/20100722 Firefox/3.6.8
Top
User avatar
Giorgio Maone
Site Admin
Posts: 9524
Joined: Wed Mar 18, 2009 11:22 pm
Location: Palermo - Italy
Contact:
Contact Giorgio Maone

Re: Getting Cross Site Scripting error when using ebay...

Post by Giorgio Maone »

Diffie wrote:Attempting to allow the reload does nothing to remove the block.
Do you mean that "Unsafe reload" doesn't work?

At any rate, you can work-around by adding the following line to your NoScript Options|Advanced|XSS exceptions box:

Code: Select all

^https://secure\.outright\.com/selling_manager/init_session
Mozilla/5.0 (Windows; U; Windows NT 5.2; en-US; rv:1.9.2.8) Gecko/20100722 Firefox/3.6.8
Top
Post Reply

Return to “NoScript Support”