https://developer.mozilla.org › en-US › docs › Web › HTTP › Headers › X-XSS-Protection
X-XSS-Protection - HTTP | MDN - MDN Web DocsThe HTTP X-XSS-Protection response header was a feature of Internet Explorer, Chrome and Safari that stopped pages from loading when they detected reflected cross-site scripting (XSS) attacks.
https://stackoverflow.com › questions › 9090577
What is the http-header "X-XSS-Protection"? - Stack OverflowX-XSS-Protection is a HTTP header understood by Internet Explorer 8 (and newer versions). This header lets domains toggle on and off the "XSS Filter" of IE8, which prevents some categories of XSS attacks. IE8 has the filter activated by default, but servers can switch if off by setting
https://www.justegeek.fr › proteger-votre-site-des-attaques-xss-avec-len-tete-x-xss...
Protéger votre site des attaques XSS avec l'en-tête X-XSS-ProtectionL'en-tête X-XSS-Protection permet d'activer la protection contre les attaques XSS incluse dans les navigateurs Internet compatibles (IE, Chrome, Safari...). Cette en-tête peut prendre 4 valeurs différentes : 0 : le filtrage XSS est désactivé. 1 : le filtrage XSS est activé et le navigateur essaie de nettoyer le code, si besoin.
https://http.dev › x-xss-protection
X-XSS-Protection - Expert Guide to HTTP headersThe HTTP X-XSS-Protection header is an older cross-site scripting attack prevention feature that exists in Chrome, Internet Explorer, and Safari browsers. It has become largely unnecessary in modern browser implementations that support a strong HTTP Content-Security-Policy header.
https://cheatsheetseries.owasp.org › cheatsheets › HTTP_Headers_Cheat_Sheet
HTTP Security Response Headers Cheat Sheet - OWASPThe HTTP X-XSS-Protection response header is a feature of Internet Explorer, Chrome, and Safari that stops pages from loading when they detect reflected cross-site scripting (XSS) attacks.
https://owasp.org › www-project-secure-headers
OWASP Secure Headers Project🎯 The OWASP Secure Headers Project (also called OSHP) describes HTTP response headers that your application can use to increase the security of your application. Once set, these HTTP response headers can restrict modern browsers from running into easily preventable vulnerabilities.
https://protocolguard.com › resources › what-is-the-x-xss-protection-header
X-XSS-Protection HTTP Header - ProtocolGuard ResourcesWhen you access a website, the web server may send an HTTP header called X-XSS-Protection in its response to your browser. This header tells your browser to activate its XSS defense. If your browser detects potentially harmful code on the page, it attempts to neutralize it before execution.
https://devdoc.net › ... › en-US › docs › Web › HTTP › Headers › X-XSS-Protection.html
X-XSS-Protection - HTTP | MDN - devdoc.netThe HTTP X-XSS-Protection response header is a feature of Internet Explorer, Chrome and Safari that stops pages from loading when they detect reflected cross-site scripting (XSS) attacks.
https://www.keycdn.com › blog › x-xss-protection
X-XSS-Protection - Preventing Cross-Site Scripting AttacksThe X-XSS-Protection header is designed to enable the cross-site scripting (XSS) filter built into modern web browsers. This is usually enabled by default, but using it will enforce it. It is supported by Internet Explorer 8+, Chrome, Edge, Opera, and Safari.
https://runebook.dev › fr › docs › http › headers › x-xss-protection
HTTP - X-XSS-Protection [fr] - Runebook.devL'en-tête de réponse HTTP X-XSS-Protection est une fonctionnalité d'Internet Explorer, Chrome et Safari qui empêche le chargement des pages lorsqu'elles détectent des attaques de script intersite réfléchies ( XSS).
