Values for x-xss-protection:
1; mode=block 151,181
0 10,883
1 8,311
1;mode=block 4,119
1; mode=block; 805
1;  mode=block 262
"1; mode=block" always 176
1; 163
"1; mode=block" 113
1; mode=block; report=https://www.netflix.com/ichnaea/log/freeform/xssreport 110
0; mode=block 107
1; mode=block; report=https://csp.search.yahoo.com/xssreport 80
value=1; mode=block 61
1; mode=block, 1; mode=block 42
1; mode=block; report=https://hyperia.report-uri.com 37
1; mode = block 36
1 ; mode=block 34
1; mode-block 34
26
0; 25
1, mode=block 18
: 1;mode=block 18
mode=block 16
1; mode=block; report=https://cspreport.mail.ru/xxssprotection 15
1; report=/xss_reports 12
1; mode=block; report=https://webtown.report-uri.com/r/d/xss/enforce 12
1; mode=block; report=https://elnino.report-uri.com/r/d/xss/enforce 12
"1; mode=block" always; 11
'1; mode=block' 10
X-XSS-Protection: 1; mode=block 10
1;mode=block;report=https://cspreport.mail.ru/xxssprotection 10
1: mode=block 10
nosniff 10
1; mode=block; report=https://eset.report-uri.com/r/d/xss/enforce 9
: 1;mode=block 9
1;mod=block 9
1; mode=block" 8
1; mode=block; report=/xss/report 8
1 ;mode=block 8
"1; mode=block"; 8
1; mode=block; report=/local/ajax/CSP.php 8
1; mode=block; report=https://vizus.report-uri.com/r/d/xss/enforce 8
“1; mode=block” 7
1; mode=block; report=/xxss-violation-report-endpoint/ 7
1; mode= block 6
: mod=block 6
: 1; mode=block 6
1;mode=block; 6
1; report=1; mode=block 6
1; report=/nmms/csp-reporting-lo 5
'1;mode=block' 5
1; mode:block 5
block 5
add_header X-XSS-Protection "1; mode=block"; 5
1 mode=block 5
1; mode=block; report=/security-report.php 5
1; mode=block; report=/nelmio/xss/report 4
1; mode=block; report=https://troyhunt.report-uri.com/r/d/xss/enforce 4
1; mode=block; report=... 4
1; mode=block 4
1;mode=block;report=<reporting-uri> 4
1; mode=block always; 3
1;mode = block 3
1:mode=block 3
1; mode block 3
value 3
s1; mode=block 3
1; mode=block; report=https://www.spscommerce.com?gdsih-xxp-report; 3
1; mode=block;\ 3
1; mode=block; report=https://ichnaea-web.netflix.com/log/freeform/xssreport 3
1,mode=block 3
1; mode=block; report=https://fantastic.report-uri.com/r/d/xss/enforce 3
1; report=https://55dafc20b00345383dabdc090f37b786.report-url.com/r/t/xss/enforce 3
: 1; mode=block 3
X-XSS-Protection "1; mode=block" 3
1; report=https://centrum.animato.cz/getter.php?akce=xss-report 3
1; mode=block; report=https://sentry.io/api/1420452/security/?sentry_key=f85611b7b4134a16a36ce1e9a577c578 2
Block Mode 2
1; mode=block; report=https://hipages.report-uri.com/r/d/xss/enforce 2
1; mode=block; report=/xsslog 2
1; mode=block [always] 2
1; mode=block; report=https://www.rockefellerfoundation.org?gdsih-xxp-report; 2
1; mode=block; report=https://personifyhealth.com/?gdsih-xxp-report; 2
1; mode=block; report=https://www.veracode.com?gdsih-xxp-report; 2
1; mode=block; report=https://zero.report-uri.com/r/d/xss/enforce 2
1; mode=block; report=/csr.php 2
2 2
1; mode=block; report=https://reporting.go-mpulse.net/report/ESGA4-ZKPPH-CRQZS-M8LQ7-ZVYEQ 2
1, 1 2
DENY 2
1; report=https://greens.report-uri.com/r/d/xss/reportOnly 2
1; mode=block; report=https://o374816.ingest.sentry.io/api/5193428/security/?sentry_key=077f835ce0ba4860b4b0c62ed9d27079&sentry_environment=prod 2
1; mode=block; report=https://www.zinghr.com?gdsih-xxp-report; 2
: 1 2
1; mode=block; report=https://cb-reporting.services.getactivationkey.com 2
1; mode=block; report-uri='https://eventfrog.report-uri.com/r/d/xss/enforce' 2
1; mode=block; report=https://bzcsp.report-uri.com/r/d/xss/reportOnly 2
: 1 2
1; report=https://afy.ru/report.php 2
sanitize 2
1; mode=block; report=https://stockchannel.report-uri.com/r/d/xss/enforce 2
1; report=/api/csp 2
1; report=https://artmed.com.br/csp-report 2
1;\ mode=block 2
1; mode=block; report=https://hciyork.report-uri.com/r/d/xss/enforce 2
1; mode=block; report=/error/xss-violation 2
upgrade-insecure-requests; base-uri 'self'; frame-ancestors 'self'; form-action 'self'; 2
1; report=https://2992bde6ad0fcd23e8e1194ddc9ae1ea.report-uri.com/r/d/xss/reportOnly 2
1; report=1 2
1; mode=block; report="https://unicycle.net/report/xss.php" 2
1; mode=block; report=https://fusionapps.report-uri.com/r/d/xss/enforce 2
1; mode=block; report=https://security.itgalaxy.company/report 2
mode=block" 2
1; mode=bloack 2
1; mod=block 2
0;report=https://cdn.website-start.de/app/reporting/policyviolation/submit 2
1; report=https://advisa.report-uri.com/r/d/xss/reportOnly 2
1; mode=black 2
1; mode=block; report=https://www.processunity.com?gdsih-xxp-report; 2
0;report=https://cdn.initial-website.com/app/reporting/policyviolation/submit 2
1; mode=block; report=https://www.hse.ru/n/api/xss/report 1
1; report=https://krisha.kz/status/xssReport 1
1; mode=block; report=https://www.on24.com?gdsih-xxp-report; 1
1; mode=block; report=https://rubrik.report-uri.com/r/d/xss/enforce 1
1; report=https://indigo.report-uri.com/r/d/xss/reportOnly 1
1; mode=block; report='https://reports.vtbbo.ru/x-xss-protection' 1
1; mode=block; report=https://xss-report.1stdibs.com/ 1
1, 1; mode=block 1
1; mode=block; report=https://apptimism.com/xss 1
1; mode=block; report=https://internations.report-uri.com/r/t/xss/enforce 1
SAMEORIGIN 1
1; mode=block; report=https://essential.gg/api/report/cross-site-scripting 1
block-rendering 1
1; mode=block; report=https://rs.elcode.ru/xss 1
1; mode=block; report=/secure-headers/report/r/d/xss/enforce 1
1;model=block 1
1 .vo.msecnd.net; mode=block 1
1; report=/api/csp-report/5f3f05c46e0627d2acfe4857ed84e8fc8dde6ef2 1
1; report=https://verkkokauppa.report-uri.com/r/t/xss/enforce 1
'1'; 1
1; mode=block; report=https://caretobeauty.report-uri.com/r/d/xss/enforce 1
1; mode=block; report=https://ordermygear.report-uri.com/r/t/xss/enforce 1
1; mode=block; report=https://ncreports.report-uri.com/r/d/xss/enforce 1
1; report=/api/error-reporting/logXssReport 1
1; mode=block; report=https//www.pacogames.com/services/xss 1
1; mode=block; report=/a5f00e520ff6eed47b239b2a79f1af2289e79c1b536643db8b3dfa3eed23ad38 1
0, 1, mode=block, report= 1
1; mode=block;report-uri https://dppreport.report-uri.com/r/d/xss/enforce 1
1; report=/violation-report.php 1
1; mode=block; report=https://vzpcz.report-uri.com/r/d/xss/enforce 1
1; mode=block; report=https://localnews8.com?gdsih-xxp-report; 1
1; mode=block: X-XSS-Protection: 1; report=http://balajisoftsol.com/xss 1
Content-Type-Options 1
X-XSS-Protection 1
1; mode=block; report=https://www.sparkhire.com?gdsih-xxp-report; 1
1; mode=block; report=https://veracitycommon.report-uri.com/r/t/xss/enforce 1
1; mode=block; report=https://www.verifi.com/?gdsih-xxp-report; 1
X-XSS-Protection: 1; report=/Sitefinity/Frontend/Diagnostics/HttpHeadersReport?header=X-XSS-Protection 1
1; mode=block; report=https://cellmapper.report-uri.com/r/d/xss/enforce 1
1; report=URI 1
1; mode=block; report=https://dnet.report-uri.com/r/d/xss/enforce 1
1; mode=block; report=/beacon/csp.php 1
1; mode=block; report=https://gravie.report-uri.com/r/d/xss/enforce 1
1; mode=block; report=https://northmemorial.com?gdsih-xxp-report; 1
1; mode=block; report=https://cssversicherung.report-uri.com/r/d/xss/enforce 1
default-src 'self' https: data: 'unsafe-inline' 'unsafe-eval' 1
X-XSS-Protection" "1; mode=block 1
1; mode=block; report=https://api.clearbooks.co.uk/security-reporting/xss 1
1; mode=block; report=https://scotthelme.report-uri.com/r/d/xss/enforce 1
1; mode=block; report=https://www.castlighthealth.com?gdsih-xxp-report; 1
1; mode=block; report=https://www.inttra.com?gdsih-xxp-report; 1
1; mode=block; report=https://league.com?gdsih-xxp-report; 1
1; mode=block; report=https://www.mflex.com?gdsih-xxp-report; 1
1; mode=block, 1; mode=block, 1; mode=block 1
1; mode=block; report=https://websiteworld.com/logs/attack.txt 1
1 'block' 1
l;mode=block 1
1; mode=block” 1
1; mode=block; report=https://6c20096530348707611466d249183c11.report-uri.com/r/d/xss/enforce 1
1; mode=block; report=https://www.safebreach.com/?gdsih-xxp-report; 1
1; mode=block; report=https://www.comp-pro.de?gdsih-xxp-report; 1
1; mode=block; report=https://partssource.report-uri.com/r/d/xss/enforce 1
-1; mode=block 1
1; mode=block; report=https://secure.wonderline.eu/reports/xss-protection/ 1
1; mode=block; report=https://sentry.io/api/41432/security/?sentry_key=8263757b037c48dcafd3483e0970ca14 1
1; mode=block; report=/api/csp/report 1
"1; mode=block", 1; mode=block 1
1; mode=block; report=https://calcworkshop.report-uri.com/r/d/xss/enforce 1
1; mode: block; 1
1; report=/xss_protection_report/ 1
1; mode=block; report=https://acci.com?gdsih-xxp-report; 1
1; mode=block; report=https://bitwoci.report-uri.com/r/d/xss/enforce 1
1; mode=block; report=https://cirro.report-uri.com/r/d/xss/enforce 1
1; mode=block, public 1
1; mode=block; report=https://www.stopkillerrobots.org?gdsih-xxp-report; 1
1; mode=block; report=https://freetibet.org?gdsih-xxp-report; 1
1; mode=block; report="https://rdmc.report-uri.com/r/d/xss/enforce" 1
1; mode=block; report=https://www.spok.com?gdsih-xxp-report; 1
1; mode=block1 1
default-src: https:; frame-ancestors 'self' X-Frame-Options: SAMEORIGIN 1
1; report=/api/1/data.report_security 1
false 1
1; mode=block; report=https://www.hcpa.edu.br 1
1; report=/security/xss.html 1
1; mode=block; report=https://dogsbody.report-uri.com/r/d/xss/enforce 1
1; report=https://failte.report-uri.com/r/d/xss/enforce 1
1; report=/api/report-csp-violation/ 1
1; mode=block; report=https://rootbg.report-uri.com/r/d/xss/enforce 1
1; mode=block; report=https://provider.pl?gdsih-xxp-report; 1
1; mode=block; report="https://www.med24.dk/httpReport/X-XSS-Protection/1745538720" 1
0 1
D1; mode=block 1
1; mode=block; report=https://feldman.report-uri.com/r/d/xss/enforce 1
Value : 1 1
1;  mode=block 1
1; block 1
1; mode=block; report=https://fotoskoda.report-uri.com/r/d/xss/enforce 1
1; mode=block; report=https://intern.govalue.de/api/v2/protection/report 1
1;
      mode=block 1
1; mode=block; report=https://serge.report-uri.com/r/d/csp/enforce 1
“1;” 1
1; mode=block; report=https://eurotransport.report-uri.com/r/d/xss/enforce 1
1; mode=block; report=https://api.jeurissen.co/reports/xss/web/carlos.jeurissen.co 1
1; mode=block; report=https://rewsllc.com/api/xss_report 1
1; mode=block; report=https://nestxss.report-uri.com/r/d/xss/enforce 1
1; mode=block; report=https://flagee.cloud?gdsih-xxp-report; 1
1; mode=block; includeSubDomains; 1
1; mode=block; report=https://www.verani.com/api/xss_report 1
1;mode=block" 1
X-XSS-Protection: 1 1
1;mode=block 1
1; report=https://6d153c89aff98df62a0c4c4c2847c74e.report-uri.com/r/d/xss/enforce 1
1; report=http://m2ch.hk/browser-reports 1
1; mode=block 1
mod=block 1
1; mode=block; report=https://swimlane.com?gdsih-xxp-report; 1
1; mode=block; report=https://roweb.report-uri.com/r/d/xss/enforce 1
1; mode=block; report=https://blujaysolutions.com?gdsih-xxp-report; 1
1; report=/csp-report 1
1; report=https://login.xtm.cloud:443/saas-manager/cspReport.serv 1
1; mode=block; report=https://forums.seloc.org/csp-hotline.php?xss-report 1
'1'; mode='block' 1
1; mode=block; report=https://klmuktraining.com?gdsih-xxp-report; 1
0; mode=allow 1
1  mode=block 1
1; mode=block; report=https://bbcsp.report-uri.com/r/d/xss/enforce 1
2;mode=block 1
1; mode=block; report=https://enterprise.andela.com?gdsih-xxp-report; 1
GET, POST, PUT, DELETE, OPTIONS 1
1; report=https://www.newyork.co.uk/?csp-violation-report=1 1
1; mode=block; report="https://e44243558046671cd5cc224d223c92e6.report-uri.com/r/d/xss/enforce" 1
1; mode=block; report=https://pestakeholder.org?gdsih-xxp-report; 1
1; report=https://csp-collector.opencontent.it 1
1; mode=block always 1
1; report=https://www.newyork.nl/?csp-violation-report=1 1
1, "mode=block" 1
1, 1; mode=block, 1; mode=block 1
1; mode=block; report=https://www.nrmca.org?gdsih-xxp-report; 1
1; mode=block, 1; mode=block, 1; mode=block, 1; mode=block, 1; mode=block, 1; mode=block 1
1; report=https://is-bg.net/xss-report 1
1; mode=block; report=/report 1
1; mode=block; report=https://bhhsselectstl.com/api/xss_report 1
1; mode=block; report=https://chunk.gg/api/report/cross-site-scripting 1
1; mode=block; report="https://www.med24.no/httpReport/X-XSS-Protection/1745538825" 1
1; mode=block; report=https://ordr.net?gdsih-xxp-report; 1
header-value 1
1; mode=block; report=https://www.kalupurbank.com?gdsih-xxp-report; 1
1;report=https://issues.calpendo.com/anon/csp 1
1; report=0 1
1; mode=block; report-uri https://api.fernvenue.com/report; report-to default 1
1; report=https://www.newyorkcity.fr/?csp-violation-report=1 1
1; mode=block; report=https://www.nano-di.com?gdsih-xxp-report; 1
1; mode=;block 1
Value: 1; mode=block 1
1; report='https://www.telefonguru.hu/fooldal/sec_violations' 1
1; mode=block; always 1
1; mode=block1; mode=block 1
1; mode=block; report=https://arnove.report-uri.com/r/d/xss/enforce 1
1; mode=block; report=https://lynt.report-uri.com/r/d/xss/enforce 1
0,0,0,0,0,0 1
: 0 1
: mod=block 1
1; mode=block; report=https://sentry.myiw.ru/api/6/security/?sentry_key=29777cbd17e945eea3f35027ada00ba9; 1
0; report=/d5bcc29e34d8b6210cbfbc3acd7be0a65652590b064c60598822381e01ae1708 1
1; block; 1
1;  mode=block, 1 1
1; mode=block; report=https://expedientsoftware.com.au?gdsih-xxp-report; 1
1; mode=block; report=https://www.aglgroup.com?gdsih-xxp-report; 1
1; mode=block; report=https://aipi.report/xss-violation-report 1
default-src 'self' https: *.caixavidaeprevidencia.com.br *.caixaseguridade.com.br *.caixaseguradora.com.br youse.demdex.net *.privacytools.com.br;                      script-src 'self' https: *.caixavidaeprevidencia.com.br *.caixaseguridade.com.br *.caixaseguradora.com.br *.privacytools.com.br *.googletagmanager.com *.google.com *.googleapis.com *.gstatic.com *.google-analytics.com *.googleadservices.com *.doubleclick.net *.hotjar.com *.hotjar.io caixa.neowaydigital.com.br youse.demdex.net s3.amazonaws.com;                      style-src 'self' https: *.caixavidaeprevidencia.com.br *.caixaseguridade.com.br *.caixaseguradora.com.br *.privacytools.com.br *.google.com *.googleapis.com caixa.neowaydigital.com.br youse.demdex.net;                      img-src 'self' https: data: *.caixavidaeprevidencia.com.br *.caixaseguridade.com.br *.caixaseguradora.com.br *.privacytools.com.br *.googletagmanager.com *.gstatic.com *.google-analytics.com *.doubleclick.net *.google.com *.hotjar.com *.hotjar.io caixa.neowaydigital.com.br youse.demdex.net;                      font-src 'self' https: data: *.caixavidaeprevidencia.com.br *.caixaseguridade.com.br *.caixaseguradora.com.br *.privacytools.com.br *.gstatic.com *.hotjar.com *.hotjar.io caixa.neowaydigital.com.br youse.demdex.net;                      connect-src 'self' https: *.caixavidaeprevidencia.com.br *.caixaseguridade.com.br *.caixaseguradora.com.br *.privacytools.com.br *.google-analytics.com *.hotjar.com *.hotjar.io caixa.neowaydigital.com.br youse.demdex.net performance-api-service-dot-caixa-vida-previdencia.rj.r.appspot.com;                      frame-src 'self' https: *.caixavidaeprevidencia.com.br *.caixaseguridade.com.br *.caixaseguradora.com.br *.doubleclick.net *.hotjar.com *.hotjar.io caixa.neowaydigital.com.br youse.demdex.net;                     form-action 'self' https: *.caixavidaeprevidencia.com.br *.caixaseguridade.com.br *.caixaseguradora.com.br *.privacytools.com.br youse.demdex.net                      1
“1;mode=block” 1
1; mode=block; report=https://www.zomato.com/cspreport.php 1
1; mode=block; report=https://ip-games.ru/xss_reports 1
1; report=https://planetestarwars.report-uri.com/r/d/xss/reportOnly 1
1; mode=block; report=https://katabat.com?gdsih-xxp-report; 1
1; mode=block; report=https://www.hvst.com/csp-report 1
0,0,0,0,0,0,0,0,0 1
1; mode=block; report=https://paulmromer.report-uri.com/r/d/xss/enforce 1
'1' 1
1;mode=block;report=https://bairwell.report-uri.com/r/d/csp/enforce 1
1; mode=block; report="https://www.med24.se/httpReport/X-XSS-Protection/1745538734" 1
1; mode=block; report=https://judgeapps.report-uri.com/r/d/xss/enforce 1
1; mode=block; report=https://tdstoragebay.report-uri.com/r/d/xss/enforce 1
1; mode=block; report=https://arbinger.com?gdsih-xxp-report; 1
1; report=/Ajax/ContentSecurityPolicy/report 1
1; report=/xss_report.php 1
:1;'mode=block' 1
1; report=https://o266291.ingest.sentry.io/api/5647787/security/?sentry_key=a72999d558b84b939ee7095e8a8c18e3 1
1; mode=block; report=https://www.firefighterscharity.org.uk?gdsih-xxp-report; 1
1; mode=block; report=https://report-uri.highwebmedia.com/r/t/xss/enforce 1
1; mode=block; report=https://immuware.com?gdsih-xxp-report; 1
1; report=/seclog/xss 1
1; mode=block; report=https://www.disagro.com.gt?gdsih-xxp-report; 1
1; mode=block; report=https://www.spinal.co.uk?gdsih-xxp-report; 1
"1;mode=block" 1
1; mode=block; report=https://www.graefe24.de/xss/enforce 1
1; mode=block; report=https://admio.report-uri.com/r/d/xss/enforce 1
1; mode="block" 1
1; mode=block; report=http://revolution-laundry.localhost/?gdsih-xxp-report; 1
1: mode = block 1
1; mode=block; report=https://www.anaveo.fr?gdsih-xxp-report; 1
1; mode=block; report=https://picfinder.ai/xss-enforce-violation-reporting; 1
1; mode=block; report=https://www.dimensionengineering.com/sec-report/ 1
1; mode=block; report=https://sanctum.geek.nz/reports/xss.php 1
1; mode=block; report=/Security/CtReporting 1
1;mode=block; report=https://payroll2u.report-uri.com/r/d/xss/reportOnly 1
1; report=https://www.newyorkcity.ca/?csp-violation-report=1 1
1; mode=block; report=https://www.qualcommventures.com?gdsih-xxp-report; 1
1; mode=block; report=https://panascais.net/api/report/cross-site-scripting 1
1; mode=block; report=https://www.cirrusmd.com?gdsih-xxp-report; 1
0; report=/069b75c4f2e07da64b888cac9af4ea98c60c3e6787e0368d1a5ab34114eda24e 1
Value : 1; mode=block 1
1; mode=block; report=https://www.greeningaustralia.org.au?gdsih-xxp-report; 1
1; mode=block; report=https://api.jeurissen.co/reports/xss/web/playxylo.com 1
1; mode=block; report=https://datakitchen.io?gdsih-xxp-report; 1
1; mode=block; report=https://monexusa.com?gdsih-xxp-report; 1
1; mode=block; report=https://www.serverhunter.com/log/report-uri/ 1
1; mode=block; report=https://f59c8b075bf66c5477bf5226c4e0a968.report-uri.com/r/d/xss/enforce 1
1; mode=block; report=https://argosmultilingual.com/?gdsih-xxp-report; 1
noopen 1
1; mode=block; report=https://transcore.com?gdsih-xxp-report; 1
1; mode=block; report=https://cdslegal.com?gdsih-xxp-report; 1
1; mode=block; report=https://careyandgiampa.com/api/xss_report 1
1; mode=block; report=/Security/CspReporting 1
1;		mode=block 1
1; mode=block; report=/xss.php 1
1; mode=block; report="https://lantian.report-uri.com/r/d/xss/enforce" 1
1; mode=blockaddXFrameOptionsHeader 1