Values for x-xss-protection:
1; mode=block 59,727
0 4,298
1 3,603
1;mode=block 1,490
1; mode=block; 335
1;  mode=block 156
"1; mode=block" always 78
1; mode=block; report=/xssProtection.txt 59
1; 48
1; mode=block; report=https://csp.search.yahoo.com/xssreport 41
"1; mode=block" 38
1; mode = block 30
0; mode=block 27
1; mode=block; report=https://hyperia.report-uri.com 18
value=1; mode=block 16
1 ; mode=block 15
: 1;mode=block 15
1; mode=block; report=https://www.netflix.com/ichnaea/log/freeform/xssreport 10
1; mode=block; report=https://cspreport.mail.ru/xxssprotection 10
1; mode=block, 1; mode=block 10
1; mode-block 9
8
X-XSS-Protection: 1; mode=block 8
1, mode=block 8
0; 7
mode=block 7
: 1;mode=block 7
1; mode=block; report=https://elnino.report-uri.com/r/d/xss/enforce 6
1; mode=block" 5
: 1; mode=block 5
1: mode=block 5
“1; mode=block” 5
'1;mode=block' 4
1; mode=block; report=/xss/report 4
1; mode=block; report=https://troyhunt.report-uri.com/r/d/xss/enforce 4
: mod=block 4
1 ;mode=block 4
1; mode=block; report=https://eset.report-uri.com/r/d/xss/enforce 4
1; mode= block 4
nosniff 4
1; report=URI 4
1,mode=block 3
'1; mode=block' 3
s1; mode=block 3
“1;mode=block” 3
"1; mode=block"; 3
1;mode=block;report=https://cspreport.mail.ru/xxssprotection 3
1 mode=block 3
1; mode=block; report=https://vizus.report-uri.com/r/d/xss/enforce 3
1; report=1 3
1; mode=block; report=https://saasopenpa.report-uri.com/r/d/xss/enforce 3
1; mode=block; report=https://www.zomato.com/cspreport.php 2
1; mode=block; report=https://hipages.report-uri.com/r/d/xss/enforce 2
1; mode=block; report=/nelmio/xss/report 2
1; mode=block; report=https://www.e2open.com?gdsih-xxp-report; 2
1; report=/api/error-reporting/logXssReport 2
1; mode=block; report=... 2
1; report=https://www.web-stat.com/ajax.htm?action=Log 2
1; mode=block; report=https://www.ender-informatics.ch?gdsih-xxp-report; 2
1; mode=block; report=https://thetote.report-uri.com/r/d/xss/enforce 2
1; mode=block; report=https://viega.report-uri.com/r/t/xss/reportOnly 2
1;: mode=block 2
X-XSS-Protection "1; mode=block" 2
1; mode=block1; mode=block 2
: mod=block 2
1; mode=block, path 2
1; report=/csp-report 1
1; mode=block; report=https://www.hse.ru/n/api/xss/report 1
1;mode = block 1
1; report=https://krisha.kz/status/xssReport 1
1; mode=block always; 1
1; mode=block; report=https://jloh.report-uri.com/r/d/xss/enforce 1
block 1
1; report=https://indigo.report-uri.com/r/d/xss/reportOnly 1
1; mode=block; report=https://xss-report.1stdibs.com/ 1
1; mode=block; report='https://reports.start.vtbbo.ru/x-xss-protection' 1
1; mode=block; report=/xsslog 1
1; mode=block;\ 1
1;
       mode=block 1
block-rendering 1
1; mode=block; report=https://www.rockefellerfoundation.org?gdsih-xxp-report; 1
1; mode=block; report=/secure-headers/report/r/d/xss/enforce 1
1; mode =block 1
1; mode=block; report=/csr.php 1
1; mode=block; report=https://rs.elcode.ru/xss 1
1; mode=block; report=https://gravie.report-uri.com/r/d/xss/enforce 1
1; mode=block; report=https://ordermygear.report-uri.com/r/t/xss/enforce 1
1; mode=block; report=https://caretobeauty.report-uri.com/r/d/xss/enforce 1
1; mode=block;report-uri https://dppreport.report-uri.com/r/d/xss/enforce 1
1; report=/xss_reports 1
1; mode=block; report=https://essential.gg/api/report/cross-site-scripting 1
1; mode=block; report=/xss-report?source%5Baction%5D=show&source%5Bapp%5D=ShopifyAppStore&source%5Bcontroller%5D=merchant%2Fpartners&source%5Buuid%5D=a87adae3-2c42-4638-980d-2fce30fa7aee-1715737120 1
1, 1 1
1; report=/seclog/xss 1
1; mode=block; report=/xss-report?source%5Baction%5D=show&source%5Bapp%5D=ShopifyAppStore&source%5Bcontroller%5D=merchant%2Fapp_details&source%5Buuid%5D=c6cdfa7f-4fa2-448b-87a8-034408b8d277-1715736734 1
0, 1, mode=block, report= 1
1; mode=block; report=/xss-report?source%5Baction%5D=show&source%5Bapp%5D=ShopifyAppStore&source%5Bcontroller%5D=merchant%2Fapp_details&source%5Buuid%5D=488cb812-5215-42d5-bf37-8ea5176fe51e-1715738343 1
1; report=/nmms/csp-reporting-lo 1
default-src 'self' https: data: 'unsafe-inline' 'unsafe-eval' 1
X-XSS-Protection 1
value= 1; mode=block 1
1; report=https://greens.report-uri.com/r/d/xss/reportOnly 1
: 1 1
1; mode=block; report=/api/csp/report 1
1;\ mode=block 1
1; mode=block; report=https://21torr.report-uri.com/r/d/xss/enforce 1
1; mode=block; report=https://api.clearbooks.co.uk/security-reporting/xss 1
1; mode=block; report=https://northmemorial.com?gdsih-xxp-report; 1
: 1; mode=block 1
1; mode=block, public 1
1; mode=block; report=https://www.castlighthealth.com?gdsih-xxp-report; 1
1; report=/api/1/data.report_security 1
1; mode=block; report=/security-report.php 1
1; mode=block; report=https://league.com?gdsih-xxp-report; 1
: 1 1
1; mode=block; report=https://secure.wonderline.eu/reports/xss-protection/ 1
X-XSS-Protection" "1; mode=block 1
1; report=/api/csp 1
1; mode=block; report=/local/ajax/CSP.php 1
1; mode=block; report=https://tus.ie?gdsih-xxp-report; 1
1; mode=block; report=https://webmechanix.report-uri.com/r/d/xss/enforce 1
1; mode=block; report=https://panascais.net/api/report/cross-site-scripting 1
1; report=https://afy.ru/report.php 1
1; mode=block; report="https://www.med24.dk/httpReport/X-XSS-Protection/1715736431" 1
1; report=/xss_protection_report/ 1
1;mode=block; 1
1; report=https://2992bde6ad0fcd23e8e1194ddc9ae1ea.report-uri.com/r/d/xss/reportOnly 1
1; mode=block; report=https://picfinder.ai/xss-enforce-violation-reporting; 1
1; mode=block always 1
1; mode=block; report=/xss-report?source%5Baction%5D=show&source%5Bapp%5D=ShopifyAppStore&source%5Bcontroller%5D=merchant%2Fpartners&source%5Buuid%5D=8e7759fd-60df-4680-a2e0-8d3285c7ab22-1715741274 1
1; mode=block; report=https://dnet.report-uri.com/r/d/xss/enforce 1
1; mode=block; report=https://www.banknorwegian.no/log/csp 1
1; mode=block” 1
add_header X-XSS-Protection "1; mode=block"; 1
1; report=https://login.xtm.cloud:443/saas-manager/cspReport.serv 1
1; mode=block, 1; mode=block, 1; mode=block 1
1; report=/api/report-csp-violation/ 1
1; mode=block; report="https://www.med24.no/httpReport/X-XSS-Protection/1715728002" 1
1; mode=block; report=https://stockchannel.report-uri.com/r/d/xss/enforce 1
1; mode=block; report=https://cirro.report-uri.com/r/d/xss/enforce 1
1; mode=block; report=https://www.stopkillerrobots.org?gdsih-xxp-report; 1
1; mode=block; report=/error/xss-violation 1
D1; mode=block 1
1; mode=block; report="https://www.med24.se/httpReport/X-XSS-Protection/1715737821" 1
1; report=https://55dafc20b00345383dabdc090f37b786.report-uri.com/r/t/xss/enforce 1
1; mode=block; report=https://fotoskoda.report-uri.com/r/d/xss/enforce 1
1; report=/security/xss.html 1
0;report=https://cdn.website-start.de/app/reporting/policyviolation/submit 1
1; mode=block 1
1;mode=block 1
1; mode=block; report=https://ntpages.report-uri.com/r/d/xss/enforce 1
1; mode=block; report=https://hciyork.report-uri.com/r/d/xss/enforce 1
upgrade-insecure-requests; base-uri 'self'; frame-ancestors 'self'; form-action 'self'; 1
1; mode=block; report-uri='https://eventfrog.report-uri.com/r/d/xss/enforce' 1
1; mode=block; report=https://keeping.report-uri.com/r/d/xss/enforce 1
1; mode=block' 1
1; mode=block; report=https://ip-games.ru/xss_reports 1
'1'; mode='block' 1
1; mode=block; report=https://flagee.cloud?gdsih-xxp-report; 1
1; mode=block; report=https://bzcsp.report-uri.com/r/d/xss/reportOnly 1
1; mode=block; report=https://www.banknorwegian.se/log/csp 1
1; report=https://www.newyork.co.uk/?csp-violation-report=1 1
1; mode=block; report=https://www.hcpa.edu.br 1
1; mode=block; report=https://ordr.net?gdsih-xxp-report; 1
1; mode=block; report=https://www.crossdresserheaven.com?gdsec-xxp-report; 1
1; mode=block; report=https://bigbank.report-uri.com/r/t/xss/enforce 1
1; mode=block, 1; mode=block; report=https://www.ancient-code.com?gdsih-xxp-report; 1
1; mode=block; report=/report/xss-violation 1
1; report=https://advisa.report-uri.com/r/d/xss/reportOnly 1
1; report=https://6d153c89aff98df62a0c4c4c2847c74e.report-uri.com/r/d/xss/enforce 1
1; mode=block; report=https://energynet.report-uri.com/r/d/xss/enforce 1
1;mode=block;report=<reporting-uri> 1
1; mode=block; report=https://roweb.report-uri.com/r/d/xss/enforce 1
1;report=https://www.asmc.de/report 1
1; mode=block; report=https://f59c8b075bf66c5477bf5226c4e0a968.report-uri.com/r/d/xss/enforce 1
1; mode=block; report=/xss-report?source%5Baction%5D=index&source%5Bapp%5D=Brochure&source%5Bcontroller%5D=engineering_blog%2Fblog&source%5Bdomain%5D=shopify.engineering&source%5Bsection%5D=brochure&source%5Buuid%5D=119f7460-0530-4cce-b5d1-ec05d02e8600-1715736758 1
Value : 1 1
1; block; 1
"1; mode=block" always; 1
1; mode=block; report=https://swimlane.com?gdsih-xxp-report; 1
1; mode=b  lock 1
1;mode=block; report=https://payroll2u.report-uri.com/r/d/xss/reportOnly 1
1; mode=block; report=/xss-report?source%5Baction%5D=show&source%5Bapp%5D=ShopifyAppStore&source%5Bcontroller%5D=merchant%2Fapp_details&source%5Buuid%5D=c1c0e7e4-6dc9-4d12-a893-eee24d745429-1715740051 1
1; report=1; mode=block 1
1; mode=block; report=https://www.aglgroup.com?gdsih-xxp-report; 1
1; report=http://m2ch.hk/browser-reports 1
1; report=https://centrum.animato.cz/getter.php?akce=xss-report 1
1; mode=block; report=https://reports.emoney.com/sh/xss 1
sanitize 1
1, 1, 1 1
1; mode=block; report=https://security.itgalaxy.company/report 1
1; mode=block; report=https://www.hvst.com/csp-report 1
0; report=/069b75c4f2e07da64b888cac9af4ea98c60c3e6787e0368d1a5ab34114eda24e 1
always 1
1; report=https://www.newyork.nl/?csp-violation-report=1 1
1; mode=block; report=https://webtown.report-uri.com/r/d/xss/enforce 1
1; mode=block; report=https://www.zinghr.com?gdsih-xxp-report; 1
1, mode=block, 1, mode=block 1
1; mode:block 1
1; mode=block; report=https://blujaysolutions.com?gdsih-xxp-report; 1
1; mode=block; report=https://www.nrmca.org?gdsih-xxp-report; 1
mode=block" 1
1;mod=block 1
1; mode=block; report=/xxss-violation-report-endpoint/ 1
1; report=https://o266291.ingest.sentry.io/api/5647787/security/?sentry_key=a72999d558b84b939ee7095e8a8c18e3 1