-
Notifications
You must be signed in to change notification settings - Fork 11
X XSS Protection
Kubik2000 edited this page Nov 6, 2019
·
1 revision
The HTTP X-XSS-Protection response header is a feature of browser that stops pages from loading when they detect reflected cross-site scripting (XSS) attacks. Although these protections are largely unnecessary in modern browsers when sites implement a strong Content-Security-Policy that disables the use of inline JavaScript.
Links:
CSS
HTML
Image
JavaScript