Login  Register

Re: Possible Cross-Site-Scripting-Attack from Nabble

Posted by Hugo <Nabble> on Feb 05, 2013; 3:55pm
URL: https://support.nabble.com/Possible-Cross-Site-Scripting-Attack-from-Nabble-tp7582908p7582929.html

Hi David, please don't worry, this is not an attack. Nabble has a bayesian algorithm that evaluates a page and determines if it is safe or not to show ads. This is needed because most ad networks have a strict policy and we must follow it or die. Yesterday we moved the bayes code to another server and each page must now communicate with it.  I was not aware that this communication would trigger the XSS attack notice you mentioned, so we will fix that immediately. Thanks for reporting this issue.