Today when Noscript seemingly updated it’s XSS detectors, I’ve got two seperate XSS attack alerts when normally browsing Youtube or watching videos. Noscript informs possbile XSS coming from “apis.google.com”, but when I tried to open the console after that, it was empty with no info of XXS blocks included. ???
Also just a moment when visiting webpage for finnish retail store “anttila.com”, another XXS warning popped out, and this note of suspicious request being blocked was found in the console:
[NoScript XSS] Siistitty epäilyttävä pyyntö. Alkuperäinen URL [https://apis.google.com/u/0/se/0/_/+1/fastbutton?usegapi=1&annotation=none&size=medium&hl=fi&origin=http%3A%2F%2Fwww.anttila.com&url=http%3A%2F%2Fwww.anttila.com%2Fshop%2Ffi%2Fnetanttila%2Flego-60097--kaupungin-aukio-50568956--malli&gsrc=3p&ic=1&jsh=m%3B%2F_%2Fscs%2Fapps-static%2F_%2Fjs%2Fk%3Doz.gapi.fi.2V_vzu4t6Nk.O%2Fm%3D__features__%2Fam%3DAQ%2Frt%3Dj%2Fd%3D1%2Frs%3DAGLTcCNcE1GFe4IBzcJxrFMwrf6oUuVs2g#_methods=onPlusOne%2C_ready%2C_close%2C_open%2C_resizeMe%2C_renderstart%2Concircled%2Cdrefresh%2Cerefresh%2Conload&id=I0_1458242040013&parent=http%3A%2F%2Fwww.anttila.com&pfname=&rpctoken=84374243] pyydetty kohteesta [http://www.anttila.com/shop/fi/netanttila/lapset/lelut/lego-60097--kaupungin-aukio-50568956--malli]. Siistitty URL: [https://apis.google.com/#5506222609099237566].