Values for x-xss-protection:
1; mode=block 141,613
0 10,983
1 6,019
1;mode=block 3,301
1; mode=block; 573
1;  mode=block 205
"1; mode=block" always 130
0; mode=block 122
1; 106
"1; mode=block" 76
1; mode=block; report=https://hyperia.report-uri.com 35
1; mode=block; report=https://csp.search.yahoo.com/xssreport 33
value=1; mode=block 30
1; mode-block 29
1; mode=block; report=https://www.netflix.com/ichnaea/log/freeform/xssreport 27
1; mode = block 27
1 ;mode=block 20
1 ; mode=block 18
17
0; 16
1; mode=block" 15
1, mode=block 13
1; mode=block; report=https://webtown.report-uri.com/r/d/xss/enforce 13
'1; mode=block' 12
1; mode=block, 1; mode=block 12
1; mode=block; report=https://elnino.report-uri.com/r/d/xss/enforce 12
1; mode=block; report=https://cspreport.mail.ru/xxssprotection 11
mode=block 11
1; mode=block 11
: 1;mode=block 11
1: mode=block 10
1; report=/xss_reports 8
: 1;mode=block 8
1; mode=block; report=https://eset.report-uri.com/r/d/xss/enforce 7
X-XSS-Protection: 1; mode=block 7
1; mode= block 7
nosniff 6
"1; mode=block"; 6
1 mode=block 6
“1; mode=block” 5
1; mode=block; report=/xss/report 5
: mod=block 5
1;mode=block; 5
1; mode=block; report=/local/ajax/CSP.php 5
1; mode=block; report=https://vizus.report-uri.com/r/d/xss/enforce 5
1; mode=block; report=/error/xss-violation 5
1; report=1; mode=block 5
1; mode=block; report=/xxss-violation-report-endpoint/ 5
1; mode=block1; mode=block 5
"1; mode=block" always; 4
1;mode = block 4
value 4
1; mode=block; report=https://troyhunt.report-uri.com/r/d/xss/enforce 4
1; mode=block; report=... 4
1; mode=block;\ 4
1; block 4
add_header X-XSS-Protection "1; mode=block"; 4
1; mode=block; report=https://portal.aipi.report/xss-violation-report 4
1;mod=block 4
Block Mode 3
1; mode=block always 3
1; mode=block; report=https://www.spscommerce.com?gdsih-xxp-report; 3
: 1; mode=block 3
1; mode=block; report=/nelmio/xss/report 3
1; mode: block; 3
mod=block 3
1; mode=block1 3
1,mode=block 3
1; mode:block 3
1; mode=block; report-uri=/csp/report.php 3
1; mode=bloack 3
1; mode=block, 0 3
1; mode=block; report=https://sentry.io/api/1420452/security/?sentry_key=f85611b7b4134a16a36ce1e9a577c578 2
1; mode=block; report=https://report-uri.highwebmedia.com/r/t/xss/enforce 2
1; mode=block; report=/xsslog 2
block 2
1:mode=block 2
s1; mode=block 2
1; mode=block; report=https://hipages.report-uri.com/r/d/xss/enforce 2
1; mode=block; report=https://security.itgalaxy.company/report 2
1, 1 2
1; mode=block; report-uri='https://eventfrog.report-uri.com/r/d/xss/enforce' 2
1; report=/seclog/xss 2
1; mode=block; report=https://reporting.go-mpulse.net/report/ESGA4-ZKPPH-CRQZS-M8LQ7-ZVYEQ 2
1; mode=block; report=https://o374816.ingest.sentry.io/api/5193428/security/?sentry_key=077f835ce0ba4860b4b0c62ed9d27079&sentry_environment=prod 2
1; report=https://greens.report-uri.com/r/d/xss/reportOnly 2
1; mode=block; report=https://www.zinghr.com?gdsih-xxp-report; 2
1; mode=block; report=https://partssource.report-uri.com/r/d/xss/enforce 2
: 1 2
1; mode=block; report=/security-report.php 2
: 1; mode=block 2
1; mode=block,1; mode=block 2
1; report=/xss_protection_report/ 2
1; report=https://afy.ru/report.php 2
1; mode=block; report=https://cb-reporting.services.getactivationkey.com 2
1; mode=block, 1;mode=block 2
1; mode=block; report=https://stockchannel.report-uri.com/r/d/xss/enforce 2
1; report=https://55dafc20b00345383dabdc090f37b786.report-url.com/r/t/xss/enforce 2
upgrade-insecure-requests; base-uri 'self'; frame-ancestors 'self'; form-action 'self'; 2
1; report=/nmms/csp-reporting-lo 2
1;mode=block;report=https://cspreport.mail.ru/xxssprotection 2
1; mode=black 2
1; mode=block; report=https://fusionapps.report-uri.com/r/d/xss/enforce 2
1;mode=block;report=<reporting-uri> 2
1; mode=block; report=https://www.wash-megroup.com/?gdsih-xxp-report; 2
: 0 2
1; mode=block; report=https://www.hse.ru/n/api/xss/report 1
1; mode=block always; 1
1; report=https://indigo.report-uri.com/r/d/xss/reportOnly 1
1; mode=block; report=https://www.on24.com?gdsih-xxp-report; 1
1;model=block 1
1; mode=block; report=https://apptimism.com/xss 1
1, 1; mode=block 1
1; mode=block; report='https://reports.vtbbo.ru/x-xss-protection' 1
SAMEORIGIN 1
block-rendering 1
1; mode=block; report=https://internations.report-uri.com/r/t/xss/enforce 1
1; report=https://verkkokauppa.report-uri.com/r/t/xss/enforce 1
1; mode=block; report=https://rs.elcode.ru/xss 1
1; mode=block; report=/secure-headers/report/r/d/xss/enforce 1
1 .vo.msecnd.net; mode=block 1
1; mode=block; report=https://personifyhealth.com/?gdsih-xxp-report; 1
1; mode=block; report=https://caretobeauty.report-uri.com/r/d/xss/enforce 1
1; report=/api/csp-report/5f3f05c46e0627d2acfe4857ed84e8fc8dde6ef2 1
1; mode=block; report=https://ordermygear.report-uri.com/r/t/xss/enforce 1
2 1
1; mode=block; report=https://www.logicgate.com?gdsih-xxp-report; 1
1; mode=block; report=/a5f00e520ff6eed47b239b2a79f1af2289e79c1b536643db8b3dfa3eed23ad38 1
1; mode=block; report=/csr.php 1
1; mode=block; report=/beacon/csp.php 1
0,0,0,0 1
1; mode=block; report=https://gravie.report-uri.com/r/d/xss/enforce 1
1; mode=block;report-uri https://dppreport.report-uri.com/r/d/xss/enforce 1
'1'; 1
DENY 1
1; mode=block: X-XSS-Protection: 1; report=http://balajisoftsol.com/xss 1
1; report=/violation-report.php 1
1; report=https://evroto.bg/xss-report 1
1; mode=block; report=https://localnews8.com?gdsih-xxp-report; 1
1; mode=block; report=https://vzpcz.report-uri.com/r/d/xss/enforce 1
Content-Type-Options 1
1; mode=block; report=https://www.sparkhire.com?gdsih-xxp-report; 1
default-src 'self'; script-src 'report-sample' 'self' 'unsafe-inline' 'unsafe-eval' https://www.googletagmanager.com https://maps-api-ssl.google.com https://api.whichosmap.co.uk https://whichosmap.co.uk https://www.google-analytics.com https://www.google.com https://www.gstatic.com; script-src-elem 'report-sample' 'self'  'unsafe-inline' 'unsafe-eval' https://www.googletagmanager.com/gtag/ https://tp.gardners.com/scripts/jquery-3.7.1.min.js https://maps-api-ssl.google.com/maps-api-v3/api/js/59/3a/intl/en_gb/map.js https://api.whichosmap.co.uk/embed/js/os-map.js https://whichosmap.co.uk/js/embed.js https://www.google-analytics.com/analytics.js https://www.google.com/recaptcha/api.js https://www.googletagmanager.com/gtm.js https://www.gstatic.com/recaptcha/releases/pPK749sccDmVW_9DSeTMVvh2/recaptcha__en.js https://maps-api-ssl.google.com/maps/api/js https://maps-api-ssl.google.com/maps-api-v3/api/js/59/3a/common.js https://maps-api-ssl.google.com/maps-api-v3/api/js/59/3a/util.js https://maps-api-ssl.google.com/maps-api-v3/api/js/59/3a/map.js https://maps-api-ssl.google.com/maps-api-v3/api/js/59/3a/marker.js https://maps-api-ssl.google.com/maps-api-v3/api/js/59/3a/onion.js https://maps-api-ssl.google.com/maps-api-v3/api/js/59/3a/controls.js https://maps-api-ssl.google.com/maps/vt; style-src 'report-sample' 'self' 'unsafe-inline' 'unsafe-eval' https://fonts.googleapis.com https://stackpath.bootstrapcdn.com; object-src 'none'; base-uri 'self'; connect-src 'self' https://maps.googleapis.com https://region1.google-analytics.com https://www.google-analytics.com https://tp.gardners.com/scripts; font-src 'report-sample' 'self' 'unsafe-inline' 'unsafe-eval' https://fonts.gstatic.com https://stackpath.bootstrapcdn.com; frame-src 'self' https://www.youtube.com/ https://www.google.com https://api.whichosmap.co.uk/embed https://whichosmap.co.uk/js; mg-src 'self' https://*.youtube.com/ data: https://jackets.dmmserver.com https://maps-api-ssl.google.com https://maps.gstatic.com https://www.googletagmanager.com; manifest-src 'self'; media-src 'self'; worker-src 'none'; 1
1; mode=block; report=https://veracitycommon.report-uri.com/r/t/xss/enforce 1
default-src 'self' https: data: 'unsafe-inline' 'unsafe-eval' 1
X-XSS-Protection 1
1; mode=block; report=https://ichnaea-web.netflix.com/log/freeform/xssreport 1
Value : 1 1
1; mode=block; report=https://api.clearbooks.co.uk/security-reporting/xss 1
1; mode=block; report=https://cellmapper.report-uri.com/r/d/xss/enforce 1
1; report=/api/report-csp-violation/ 1
X-XSS-Protection: 1; report=/Sitefinity/Frontend/Diagnostics/HttpHeadersReport?header=X-XSS-Protection 1
1; mode=block; report=https://league.com?gdsih-xxp-report; 1
X-XSS-Protection" "1; mode=block 1
1; mode=block; report=https://northmemorial.com?gdsih-xxp-report; 1
1; mode=block; report=https://scotthelme.report-uri.com/r/d/xss/enforce 1
1; report=https://mvr.bg/xss-report 1
1; mode=block; report=https://fotoskoda.report-uri.com/r/d/xss/enforce 1
1 'block' 1
1; mode=block; report=https://www.castlighthealth.com?gdsih-xxp-report; 1
default-src: https:; frame-ancestors 'self' X-Frame-Options: SAMEORIGIN 1
l;mode=block 1
1; mode=block” 1
false 1
1; mode=block; report=https://sentry.io/api/41432/security/?sentry_key=8263757b037c48dcafd3483e0970ca14 1
1; mode=block; report=https://fantastic.report-uri.com/r/d/xss/enforce 1
1; mode=block; report=https://www.safebreach.com/?gdsih-xxp-report; 1
: 1 1
-1; mode=block 1
1; mode=block; report=https://6c20096530348707611466d249183c11.report-uri.com/r/d/xss/enforce 1
1; mode=block; report=https://acci.com?gdsih-xxp-report; 1
1; mode=block; report=https://provider.pl?gdsih-xxp-report; 1
"1; mode=block", 1; mode=block 1
1; mode=block; report=https://www.hcpa.edu.br 1
geolocation=(); midi=(); notifications=(); push=(); sync-xhr=(); microphone=(); camera=(self); magnetometer=(); gyroscope=(); speaker=(self); vibrate=(self); fullscreen=(self); payment=(); 1
1; mode=block; report=https://www.inttra.com?gdsih-xxp-report; 1
1; mode=block; report=https://cirro.report-uri.com/r/d/xss/enforce 1
1;  mode=block, 1 1
1; mode=block; report=https://rewsllc.com/api/xss_report 1
1; mode=block; report=https://porter.com.br?gdsih-xxp-report; 1
1; mode=block; report=https://hciyork.report-uri.com/r/d/xss/enforce 1
Enabled 1
1; report=/security/xss.html 1
1; mode=block; report=https://www.zomato.com/cspreport.php 1
1; mode=block; report=https://www.comp-pro.de?gdsih-xxp-report; 1
1; report=https://failte.report-uri.com/r/d/xss/enforce 1
D1; mode=block 1
1; mode=block; report=https://www.verani.com/api/xss_report 1
1; mode=block; report=https://www.spok.com?gdsih-xxp-report; 1
1; mode=block; report="https://unicycle.net/report/xss.php" 1
1; mode=block; report=https://calcworkshop.report-uri.com/r/d/xss/enforce 1
1; mode=block; report=https://pestakeholder.org?gdsih-xxp-report; 1
1; mode=block; report=https://freetibet.org?gdsih-xxp-report; 1
1; mode=block; report=https://api.jeurissen.co/reports/xss/web/jeurissen.co 1
0; mode=allow 1
value="1; mode=block" 1
ALWAYS 1
1; mode=block; report=https://bhhsselectstl.com/api/xss_report 1
1;mode-block 1
1; report=https://artmed.com.br/csp-report 1
1; mode=block; report=https://dnet.report-uri.com/r/d/xss/enforce 1
1; mode=block; report=https://bluewhaleresearch.com?gdsih-xxp-report; 1
1;  mode=block 1
1; report=/api/1/data.report_security 1
1; mode=block; report=https://www.nrmca.org?gdsih-xxp-report; 1
1; mode=block; report=https://nestxss.report-uri.com/r/d/xss/enforce 1
1; report= 1
1; mode=block; report=https://ordr.net?gdsih-xxp-report; 1
'1'; mode='block' 1
1; mode=block, 1, mode=block 1
1; mode=block [always] 1
1; mode=block; report=https://bzcsp.report-uri.com/r/d/xss/reportOnly 1
1; report=/api/csp 1
1; mode=block 1
1; report=https://6d153c89aff98df62a0c4c4c2847c74e.report-uri.com/r/d/xss/enforce 1
1; mode=block; report=https://chunk.gg/api/report/cross-site-scripting 1
1;mode:block 1
1;mode=block" 1
1; mode=block; report=https://swimlane.com?gdsih-xxp-report; 1
X-XSS-Protection: 1 1
1;report=https://issues.calpendo.com/anon/csp 1
1; mode=block; report=https://roweb.report-uri.com/r/d/xss/enforce 1
1;report=https://city.travel/service/reports 1
1; mode=block; report=https://www.nano-di.com?gdsih-xxp-report; 1
1; mode=block; report="https://e44243558046671cd5cc224d223c92e6.report-uri.com/r/d/xss/enforce" 1
X-XSS-Protection "1; mode=block" 1
1; mode=block; report="https://www.med24.no/httpReport/X-XSS-Protection/1770426123" 1
X-XSS-Protection: 0 1
1; report='https://www.telefonguru.hu/fooldal/sec_violations' 1
1; report=/api/error-reporting/logXssReport 1
1; report=https://login.xtm.cloud:443/saas-manager/cspReport.serv 1
1; block; 1
1; mode=block; report=https://forums.seloc.org/csp-hotline.php?xss-report 1
1; mode=block; report=https://careyandgiampa.com/api/xss_report 1
1; mode=block; report=https://arnove.report-uri.com/r/d/xss/enforce 1
mode=block" 1
0 1
1; mode=block; report="https://www.med24.se/httpReport/X-XSS-Protection/1770427862" 1
1; report=1 1
1; mode=block; report=https://foxandriley.com/api/xss_report 1
1; report=http://m2ch.hk/browser-reports 1
0; mode=block, 1; mode=block 1
1; mode=strict 1
1; mode=block; report=https://tunnat.report-uri.com/r/d/xss/enforce 1
1; mode=block; report=https://www.mflex.com?gdsih-xxp-report; 1
Header set X-XSS-Protection "1; mode=block" 1
1\; mode=block 1
'1' 1
1; report=https://sentry.lyskraft.in/api/8/security/?sentry_key=552e386771f07c015276d8bff631bd66 1
1; report=https://centrum.animato.cz/getter.php?akce=xss-report 1
0; report=/069b75c4f2e07da64b888cac9af4ea98c60c3e6787e0368d1a5ab34114eda24e 1
1; report=https://2992bde6ad0fcd23e8e1194ddc9ae1ea.report-uri.com/r/d/xss/reportOnly 1
0; report=/d5bcc29e34d8b6210cbfbc3acd7be0a65652590b064c60598822381e01ae1708 1
1; mode=block; report=https://magnoliarealestatestl.com/api/xss_report 1
1; report=https://advisa.report-uri.com/r/d/xss/reportOnly 1
Block-Mode 1
1;\ mode=block 1
1; mode=block; report=/report 1
sanitize 1
true 1
1; mode=block; always 1
1, "mode=block" 1
1; mode=block; report=https://xss-report.1stdibs.com/ 1
1; mode=block; report=https://www.disagro.com.gt?gdsih-xxp-report; 1
1; report=URI 1
1; mode=blockaddXFrameOptionsHeader 1
1; mod=block 1
1; report=https://csp-collector.opencontent.it 1
1; report=https://www.newyork.co.uk/?csp-violation-report=1 1
1; mode=block; report=https://picfinder.ai/xss-enforce-violation-reporting; 1
1; mode=block; report=/csp-report.php 1
1; mode=block; report=https://chaletmanager.report-uri.com/r/d/xss/enforce 1
2;mode=block 1
1; mode=block; report=https://www.graefe24.de/xss/enforce 1
1; mode=block; report=https://puredu.net/xss-report 1
1; mode=block; report=https://realismcraft.com/api/report/cross-site-scripting 1
1; mode=block; report=https://www.serverhunter.com/log/report-uri/ 1
1:mode=block; 1
1; mode=block; report=https://paulmromer.report-uri.com/r/d/xss/enforce 1
1; mode=block; report=https://garciaproperties.com/api/xss_report 1
noopen 1
1; mode=block; report=https://cdslegal.com?gdsih-xxp-report; 1
1; mode=block; report=https://www.spinal.co.uk?gdsih-xxp-report; 1
1; report=/main/sys/report 1
1;		mode=block 1
header-value 1
1; mode=block; report=https://judgeapps.report-uri.com/r/d/xss/enforce 1
1; mode=block; report=https://eastkeyrealty.com/api/xss_report 1
1; mode=block; report=https://api.jeurissen.co/reports/xss/web/playxylo.com 1
0;report=https://cdn.website-start.de/app/reporting/policyviolation/submit 1