Go Back   vb.org Archive > Community Discussions > Forum and Server Management
Reload this Page NoScript XSS warning.
FAQ Members List Calendar Search Today's Posts Mark Forums Read
  #1  
Old 04-16-2009, 11:27 AM
rn88 rn88 is offline
 
Join Date: May 2008
Posts: 1
Благодарил(а): 0 раз(а)
Поблагодарили: 0 раз(а) в 0 сообщениях
Default NoScript XSS warning.
Hey,

I've been using vBulletin for years with no problems, but today when I visited my site I started getting XSS warnings, which appear to be coming from our Yahoo! ads (which we've had for about 2 months now without any problems). The warnings appear on every page that displays the ads, and stop if I block the ads through NoScript. I have no idea if it's a genuine risk or if its just NoScript playing up, so I was wondering if someone in the know could take a look at the NoScript output and let me know what they think since it means nothing to me! I'm using vBulletin 3.8.1 PL1 with up-to-date OS/Apache/PHP/MySQL/etc.

Code:
[NoScript XSS] Sanitised suspicious request. Original URL [[url]http://ypn-js.ysm.yahoo.com/d/search/p/ypn/jsads/?Partner=XXXXXXXXXX&type=57212&adwd=728&adht=90&ctxtUrl=http%3A%2F%2Fforums.MYSITE.org%2F&bc=FFFFFF&cc=FFFFFF&lc=0000FF&tc=000000&uc=999999&du=1&cb=1239884527856&ctxtContent=%3Chead%3E%0A%0A%0A%09%3C!--%20no%20cache%20headers%20--%3E%0A%09%3Cmeta%20http-equiv%3D%22Pragma%22%20content%3D%22no-cache%22%3E%0A%09%3Cmeta%20http-equiv%3D%22Expires%22%20content%3D%22-1%22%3E%0A%09%3Cmeta%20http-equiv%3D%22Cache-Control%22%20content%3D%22no-cache%22%3E%0A%09%3C!--%20end%20no%20cache%20headers%20--%3E%0A%09%3Cmeta%20http-equiv%3D%22Content-Type%22%20content%3D%22text%2Fhtml%3B%20charset%3DISO-8859-1%22%3E%0A%3Cmeta%20name%3D%22generator%22%20content%3D%22vBulletin%203.8.1%22%3E%0A%0A%3Cmeta%20name%3D%22keywords%22%20content%3D%22vbulletin%2Cjelsoft%2Cforum%2Cbbs%2Cdiscussion%2Cbulletin%20board%2Csex%2Crelationships%2Cdating%2Csupport%2Cadvice%2Cteen%20help%2Cteens%2Cissues%2Cabuse%2Cpuberty%2Cpre][/url] requested from [[url]http://forums.MYSITE.org/][/url]. Sanitised URL: [[url]http://ypn-js.ysm.yahoo.com/d/search/p/ypn/jsads/?Partner=XXXXXXXXXX&type=57212&adwd=728&adht=90&ctxtUrl=http%3A%2F%2Fforums.MYSITE.org%2F&bc=FFFFFF&cc=FFFFFF&lc=0000FF&tc=000000&uc=999999&du=1&cb=1239884527856&ctxtContent=%20head%3E%20!-%20no%20cache%20headers%20-%3E%20meta%20http-equiv%20%20Pragma%20content%20%20no-cache%20%3E%20meta%20http-equiv%20%20Expires%20content%20%20-1%20%3E%20meta%20http-equiv%20%20Cache-Control%20content%20%20no-cache%20%3E%20!-%20end%20no%20cache%20headers%20-%3E%20meta%20http-equiv%20%20Content-Type%20content%20%20text%2Fhtml%3B%20charset%20ISO-8859-1%20%3E%20meta%20NAME%20%20generator%20content%20%20vBulletin%203.8.1%20%3E%20meta%20NAME%20%20keywords%20content%20%20vbulletin%2Cjelsoft%2Cforum%2Cbbs%2Cdiscussion%2Cbulletin%20board%2Csex%2Crelationships%2Cdating%2Csupport%2Cadvice%2Cteen%20help%2Cteens%2Cissues%2Cabuse%2Cpuberty%2Cpre#881207864027968914][/url].)
Reply With Quote
Reply

« Previous Thread | Next Thread »
Thread Tools
Display Modes
Linear Mode Linear Mode

Posting Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts
BB code is On
Smilies are On
[IMG] code is On
HTML code is Off
Forum Jump


All times are GMT. The time now is 05:38 PM.

Contact Us - Archive - Top

Powered by vBulletin® Version 3.8.12 by vBS
Copyright ©2000 - 2024, vBulletin Solutions Inc.
X vBulletin 3.8.12 by vBS Debug Information
  • Page Generation 0.04699 seconds
  • Memory Usage 2,159KB
  • Queries Executed 13 (?)
More Information
Template Usage:
  • (1)SHOWTHREAD
  • (1)ad_footer_end
  • (1)ad_footer_start
  • (1)ad_header_end
  • (1)ad_header_logo
  • (1)ad_navbar_below
  • (1)ad_showthread_beforeqr
  • (1)ad_showthread_firstpost
  • (1)ad_showthread_firstpost_sig
  • (1)ad_showthread_firstpost_start
  • (1)bbcode_code
  • (1)footer
  • (1)forumjump
  • (1)forumrules
  • (1)gobutton
  • (1)header
  • (1)headinclude
  • (1)navbar
  • (3)navbar_link
  • (120)option
  • (1)post_thanks_box
  • (1)post_thanks_button
  • (1)post_thanks_javascript
  • (1)post_thanks_navbar_search
  • (1)post_thanks_postbit_info
  • (1)postbit
  • (1)postbit_onlinestatus
  • (1)postbit_wrapper
  • (1)spacer_close
  • (1)spacer_open
  • (1)tagbit_wrapper 
Phrase Groups Available:
  • global
  • inlinemod
  • postbit
  • posting
  • reputationlevel
  • showthread
Included Files:
  • ./showthread.php
  • ./global.php
  • ./includes/init.php
  • ./includes/class_core.php
  • ./includes/config.php
  • ./includes/functions.php
  • ./includes/class_hook.php
  • ./includes/modsystem_functions.php
  • ./includes/functions_bigthree.php
  • ./includes/class_postbit.php
  • ./includes/class_bbcode.php
  • ./includes/functions_reputation.php
  • ./includes/functions_post_thanks.php 
Hooks Called:
  • init_startup
  • init_startup_session_setup_start
  • init_startup_session_setup_complete
  • cache_permissions
  • fetch_postinfo_query
  • fetch_postinfo
  • fetch_threadinfo_query
  • fetch_threadinfo
  • fetch_foruminfo
  • style_fetch
  • cache_templates
  • global_start
  • parse_templates
  • global_setup_complete
  • showthread_start
  • showthread_getinfo
  • forumjump
  • showthread_post_start
  • showthread_query_postids
  • showthread_query
  • bbcode_fetch_tags
  • bbcode_create
  • showthread_postbit_create
  • postbit_factory
  • postbit_display_start
  • post_thanks_function_post_thanks_off_start
  • post_thanks_function_post_thanks_off_end
  • post_thanks_function_fetch_thanks_start
  • post_thanks_function_fetch_thanks_end
  • post_thanks_function_thanked_already_start
  • post_thanks_function_thanked_already_end
  • fetch_musername
  • postbit_imicons
  • bbcode_parse_start
  • bbcode_parse_complete_precache
  • bbcode_parse_complete
  • postbit_display_complete
  • post_thanks_function_can_thank_this_post_start
  • tag_fetchbit_complete
  • forumrules
  • navbits
  • navbits_complete
  • showthread_complete