|Issue 25:||"Internet Explorer has modified this page to prevent cross-site scripting"|
|1 person starred this issue and may be notified of changes.||Back to list|
Sep 12, 2010
Apr 21, 2011
I spoke with the engineer responsible with the XSS filter in IE. He tells me that this XSS Protection header must be turned off from the Google side. Without having that XSS filter turned off, the XSS filter believes that google contacts api calls to create contacts are some kind of brute force attack after creating around 13 records. I would recommend that Google turn off the XSS filter off - to 0.
|► Sign in to add a comment|