The Support Forums will be in read-only mode for a scheduled maintenance window on 01 September 2016 14:00 UTC - 20:00 UTC. More information.

Shareaholic | share buttons, related posts, social analytics & more
Cross-site scripting (XSS) error in FireFox (4 posts)

  1. Quimbly
    Posted 2 years ago #

    I am encountering a NoScript error in FireFox stating that there is a potential cross-site scripting (XSS) attempt. I've tracked down this error to the Shareaholic plugin version and the last version.

    What's this all about? I'm concerned that this might affect my search rankings.


  2. ericatshareaholic
    Posted 2 years ago #

    Our plugin, and many others, make javascript calls to other locations, or "sites," on the web. This "cross-site scripting" is a perfectly legitimate method of exchanging information on the web through the browser and should not in itself affect search rankings.

    To permit our plugin to run on your blog with NoScript activated, the following sites must be whitelisted in your NoScript plugin:


    The following additional sites may also need to be whitelisted:


  3. Quimbly
    Posted 2 years ago #

    Well, here's the thing...
    I don't see this warning message when I browse ANY legit sites. I've only ever come across it a couple of times, and they were on sketchy sites that I wouldn't trust ever. So, if the activity is so legitimate, why are there no sites out there where I see this?

    Also, this is a new development with the plugin. I've been using this plugin for several months and have never encountered this problem before. Now I'm seeing it. I think it's just been in the last two versions. Why the change? What's it needed for?

  4. ericatshareaholic
    Posted 2 years ago #

    Could you record (and send us) a screencast of the warnings you are getting, the sites you are seeing them on, and your settings?

Topic Closed

This topic has been closed to new replies.

About this Plugin

About this Topic