Recently has been interested in network security knowledge, the book is currently in the online recommended "Web Application Security Authoritative guide." This book provides the ability to download a virtual machine image and run the virtual machine to do the experiment in the book on the Computer browser.
The 66th page involves an XSS experiment, and the normal effect is to execute JavaScript, which pops up a dialog box. I was doing it. IE hints that Internet Explorer has modified this page to help prevent cross-site scripting. "(1).
I first added the address to the trusted site, no effect. When I thought of setting up OA system for company before, we need not only add trusted site, but also change the content of "Custom Level". By looking, I finally found an option: Enable XSS filter. Disable it (2) and resolve the problem (3).
This is a measure of IE for security reasons, but the experimental environment sometimes to better see the effect, still have to turn off these functions. Or is that knowledge already out?
650) this.width=650; "Src=" Http://s1.51cto.com/wyfs02/M02/8D/0D/wKiom1iDaMOzRjRjAABvS0JEKlY558.jpg-wh_500x0-wm_3 -wmp_4-s_4122564013.jpg "style=" Float:none; "title=" qq1.jpg "alt=" Wkiom1idamozrjrjaabvs0jekly558.jpg-wh_50 "/>
Figure 1
650) this.width=650; "Src=" Http://s3.51cto.com/wyfs02/M00/8D/0D/wKiom1iDaMTD9oyQAACRJPSLM4E059.jpg-wh_500x0-wm_3 -wmp_4-s_1144262989.jpg "style=" Float:none; "title=" qq2.jpg "alt=" Wkiom1idamtd9oyqaacrjpslm4e059.jpg-wh_50 "/>
Figure 2
650) this.width=650; "Src=" Http://s1.51cto.com/wyfs02/M02/8D/0A/wKioL1iDaMbhKKrsAAC4mSDXbGQ723.jpg-wh_500x0-wm_3 -wmp_4-s_2128660877.jpg "style=" Float:none; "title=" qq3.jpg "alt=" Wkiol1idambhkkrsaac4msdxbgq723.jpg-wh_50 "/>
Figure 3
This article is from "Welcome!" "Blog, be sure to keep this provenance http://smellyman.blog.51cto.com/1110816/1893599
Resolves "Internet Explorer has modified this page to help prevent cross-site scripting." "The question"