Values for x-xss-protection:
1; mode=block 135,239
0 8,531
1 8,169
1;mode=block 3,201
1; mode=block; 695
1;  mode=block 338
"1; mode=block" always 166
1; mode=block; report=/xssProtection.txt 119
"1; mode=block" 105
1; 95
1; mode = block 77
1; mode=block; report=https://csp.search.yahoo.com/xssreport 76
0; mode=block 72
value=1; mode=block 64
1; mode=block; report=/others/xss-report.htm 35
1; mode=block; report=https://hyperia.report-uri.com 34
1 ; mode=block 31
: 1;mode=block 30
1; mode-block 22
1; mode=block; report=https://cspreport.mail.ru/xxssprotection 21
21
1; mode=block, 1; mode=block 21
1, mode=block 19
1; report=/xss_reports 18
1; mode=block; report=https://www.netflix.com/ichnaea/log/freeform/xssreport 14
mode=block 14
0; 13
1; mode=block; report=https://elnino.report-uri.com/r/d/xss/enforce 12
: 1; mode=block 11
1;mode=block;report=https://cspreport.mail.ru/xxssprotection 11
1; mode= block 10
1; mode=block; report=/xss/report 9
1 ;mode=block 9
1; mode=block; report=https://eset.report-uri.com/r/d/xss/enforce 8
X-XSS-Protection: 1; mode=block 8
1 mode=BLOCK 8
1; mode=block" 8
â€ś1; mode=blockâ€ť 8
: 1;mode=block 8
1: mode=block 7
"1; mode=block"; 7
1; mode=block; report=https://vizus.report-uri.com/r/d/xss/enforce 7
1;mode=block; 6
1; report=/nmms/csp-reporting-lo 6
1; mode=block; report=https://scotthelme.report-uri.com/r/d/xss/enforce 6
add_header X-XSS-Protection "1; mode=block"; 6
'1;mode=block' 5
'1; mode=block' 5
1; mode=block  5
1;mod=block 5
1; mode:block 4
1; block 4
1; mode=block; report=https://troyhunt.report-uri.com/r/d/xss/enforce 4
s1; mode=block 4
1; report=https://www.web-stat.com/ajax.htm?action=Log 4
1; mode=block; report=/local/ajax/CSP.php 4
1; mode=block; report=/security-report.php 4
1; mode=block; report=/xxss-violation-report-endpoint/ 4
nosniff 4
1; mode=block; report=/error/xss-violation 4
1; mode=block; report=https://saasopenpa.report-uri.com/r/d/xss/enforce 4
1;mode = block 3
block 3
1; report=/hc/csp 3
1; mode=block; report=/nelmio/xss/report 3
1,mode=block 3
1; report=/api/error-reporting/logXssReport 3
1; mode=block; report=https://www.e2open.com?gdsih-xxp-report; 3
1; mode=block; report=... 3
: mod=block 3
â€ś1;mode=blockâ€ť 3
1;model=block 3
"1; mode=block" always; 3
1; report=https://achtzig20.report-uri.com/r/d/xss/enforce 3
1:mode=block 3
1; mode=block; report=https://tus.ie?gdsih-xxp-report; 3
1; mode=block; report=https://thetote.report-uri.com/r/d/xss/enforce 3
1;mode=block;report=<reporting-uri> 3
1; report=https://55dafc20b00345383dabdc090f37b786.report-uri.com/r/t/xss/enforce 3
1; mode=block; report=https://viega.report-uri.com/r/t/xss/reportOnly 3
X-XSS-Protection "1; mode=block" 3
1; mode=block; report=https://hipages.report-uri.com/r/d/xss/enforce 2
1; report=/csp-report 2
1; mode=block; report=https://sentry.io/api/1420452/security/?sentry_key=f85611b7b4134a16a36ce1e9a577c578 2
value= 1; mode=block 2
1; mode =block 2
1; mode=block; report=/xsslog 2
1; report=https://smart.report-uri.io/r/default/csp/reportOnly 2
1; mode=block;\ 2
1;
       mode=block 2
SAMEORIGIN 2
1; mode=block; report=https://www.rockefellerfoundation.org?gdsih-xxp-report; 2
1; mode=block; report=https://zero.report-uri.com/r/d/xss/enforce 2
1, 1 2
'1'; 2
1; mode=block; report=https://ecostruxureit.report-uri.com/r/t/xss/enforce 2
1; mode=block; report=https://reporting.go-mpulse.net/report/ESGA4-ZKPPH-CRQZS-M8LQ7-ZVYEQ 2
1;report=https://www.asmc.de/report 2
1; report=https://afy.ru/report.php 2
1; report=https://greens.report-uri.com/r/d/xss/reportOnly 2
1; mode=block, public 2
: 1 2
1; mode=block; report=https://partnerize.com?gdsih-xxp-report; 2
1; mode=block; report=https://www.zinghr.com?gdsih-xxp-report; 2
1; report=1 2
: 1; mode=block 2
1; report=/xss_protection_report/ 2
1; report=/api/csp 2
1; mode=block; report="https://unicycle.net/report/xss.php" 2
1; mode=blockâ€ť 2
1; mode=block; report-uri='https://eventfrog.report-uri.com/r/d/xss/enforce' 2
1; mode=block; report=https://fantastic.report-uri.com/r/d/xss/enforce 2
1; mode=block always 2
1; mode=block; report=https://pininfarina.it/en/?gdsih-xxp-report; 2
1; mode=block; report=https://roweb.report-uri.com/r/d/xss/enforce 2
1;\ mode=block 2
1; mode=block; report=https://stockchannel.report-uri.com/r/d/xss/enforce 2
0;report=https://cdn.website-start.de/app/reporting/policyviolation/submit 2
1; report=https://advisa.report-uri.com/r/d/xss/reportOnly 2
1; mode=block' 2
1; report=URI 2
0;report=https://cdn.initial-website.com/app/reporting/policyviolation/submit 2
1; mode=block, path 2
1; mode=block; report=https://www.hse.ru/n/api/xss/report 1
1; mode=block; report=https://rubrik.report-uri.com/r/d/xss/enforce 1
1; mode=block; report=https://idcqaenforce.report-uri.com/r/d/xss/enforce 1
1; report=https://krisha.kz/status/xssReport 1
1; report=https://indigo.report-uri.com/r/d/xss/reportOnly 1
1; mode=block; report=https://jloh.report-uri.com/r/d/xss/enforce 1
1; mode=block; report=https://xss-report.1stdibs.com/ 1
1; mode=block; report='https://reports.start.vtbbo.ru/x-xss-protection' 1
1, 1; mode=block 1
1; report=https://allegroapi.io/seclog/xss 1
1; mode=block; report=https://internations.report-uri.com/r/t/xss/enforce 1
value 1
1; mode=block; report=https://eventure.report-uri.com/r/d/xss/enforce 1
1;                                     mode=block 1
1; mode=block; report=https://www.virginpulse.com/?gdsih-xxp-report; 1
1; mode=block; report=/secure-headers/report/r/d/xss/enforce 1
1; mode=block; report=/a5f00e520ff6eed47b239b2a79f1af2289e79c1b536643db8b3dfa3eed23ad38 1
2 1
1; report=https://quantum.esu.edu/csp/csp-parser.php 1
1; report=https://verkkokauppa.report-uri.com/r/t/xss/enforce 1
microphone 'self' 1
1 .vo.msecnd.net; mode=block 1
1; report=/api/csp-report/5f3f05c46e0627d2acfe4857ed84e8fc8dde6ef2 1
1; mode=block; report=https://www.spscommerce.com?gdsih-xxp-report; 1
1; mode=block; report=https://ordermygear.report-uri.com/r/t/xss/enforce 1
1; mode=block; report=https://rs.elcode.ru/xss 1
1; mode=block; report=https://caretobeauty.report-uri.com/r/d/xss/enforce 1
1; mode=block; report=https://ncreports.report-uri.com/r/d/xss/enforce 1
1; mode=block; report=/xss-report?source%5Baction%5D=show&source%5Bapp%5D=ShopifyAppStore&source%5Bcontroller%5D=merchant%2Fapp_details&source%5Buuid%5D=8a776725-b02e-459b-a8bf-3942071893f3 1
0,0,0,0,0,0,0,0,0,0,0 1
1; mode=block;report-uri https://dppreport.report-uri.com/r/d/xss/enforce 1
1; mode=block; report=https://localnews8.com?gdsih-xxp-report; 1
0, 1, mode=block, report= 1
1; mode=block; report=/xss-report?source%5Baction%5D=show&source%5Bapp%5D=ShopifyAppStore&source%5Bcontroller%5D=merchant%2Fpartners&source%5Buuid%5D=ebd2d44c-df0d-4e5b-bf1d-29af05c54eeb 1
1; mode=block; report=/xss-report?source%5Baction%5D=show&source%5Bapp%5D=ShopifyAppStore&source%5Bcontroller%5D=merchant%2Fapp_details&source%5Buuid%5D=86227a3c-0fc0-4a10-9e50-a11fd7d41b4a 1
1; mode=block always; 1
1; mode=block; report=/xss-report?source%5Baction%5D=show&source%5Bapp%5D=ShopifyAppStore&source%5Bcontroller%5D=merchant%2Fapp_details&source%5Buuid%5D=51e8e0d0-a3c3-44d9-97df-3d2f1c13bfeb 1
: 0 1
1; mode=block; report=/xss-report?source%5Baction%5D=show&source%5Bapp%5D=ShopifyAppStore&source%5Bcontroller%5D=merchant%2Fapp_details&source%5Buuid%5D=96b7adbc-9d6c-464d-997f-66a2de61605a 1
1; mode=block; report=https://essential.gg/api/report/cross-site-scripting 1
1; mode=block; report=https//www.pacogames.com/services/xss 1
1; mode=block: X-XSS-Protection: 1; report=http://balajisoftsol.com/xss 1
1; mode=block; report=/xss-report?source%5Baction%5D=show&source%5Bapp%5D=ShopifyAppStore&source%5Bcontroller%5D=merchant%2Fapp_details&source%5Buuid%5D=72d3e229-c583-42ea-9528-d7f62e172209 1
1; mode=block 1
1; mode=block; report=/beacon/csp.php 1
1; mode: block; 1
1; mode=block; report=/?gdsih-xxp-report; 1
1; report=https://2992bde6ad0fcd23e8e1194ddc9ae1ea.report-uri.com/r/d/xss/reportOnly 1
X-XSS-Protection 1
1; mode=block; report=https://o374816.ingest.sentry.io/api/5193428/security/?sentry_key=077f835ce0ba4860b4b0c62ed9d27079&sentry_environment=prod 1
1; report=/violation-report.php 1
1; mode=block; report=https://gravie.report-uri.com/r/d/xss/enforce 1
1; mode=block; report=https://cssversicherung.report-uri.com/r/d/xss/enforce 1
1; mode=block; report="https://www.med24.dk/httpReport/X-XSS-Protection/1701836786" 1
1; mode=block; report=https://www.castlighthealth.com?gdsih-xxp-report; 1
1; mode=block; report=https://pluginalliance.report-uri.com/r/d/xss/enforce 1
l;mode=block 1
0 1
1; mode=block; report=https://api.clearbooks.co.uk/security-reporting/xss 1
none 1
1; report=/api/report-csp-violation/ 1
1; mode=block; report=https://northmemorial.com?gdsih-xxp-report; 1
1; report=/api/1/data.report_security 1
1; mode=block; report=https://www.inttra.com?gdsih-xxp-report; 1
1; mode=block; report=https://nestxss.report-uri.com/r/d/xss/enforce 1
X-XSS-Protection: 1; report=/Sitefinity/Frontend/Diagnostics/HttpHeadersReport?header=X-XSS-Protection 1
1; mode=block; report=https://bzcsp.report-uri.com/r/d/xss/reportOnly 1
1; mode=block; report=https://websiteworld.com/logs/attack.txt 1
1; mode=block; report=https://api.jeurissen.co/reports/xss/web/carlos.jeurissen.co 1
1;report=https://city.travel/service/reports 1
1; mode=block; report=https://cellmapper.report-uri.com/r/d/xss/enforce 1
1; mode=block; report=https://picfinder.ai/xss-enforce-violation-reporting; 1
1 'block' 1
1; mode=block; report=https://panascais.net/api/report/cross-site-scripting 1
1; mode=block; report=https://webmechanix.report-uri.com/r/d/xss/enforce 1
D1; mode=block 1
1; report=https://abcspdev.report-uri.com/r/d/csp/reportOnly 1
1; mode=block; report=https://21torr.report-uri.com/r/d/xss/enforce 1
1; mode=block; report=https://partssource.report-uri.com/r/d/xss/enforce 1
1; mode=block; report=https://www.safebreach.com?gdsih-xxp-report; 1
1; mode=block; report=/api/csp/report 1
1; mode=block; report=https://league.com?gdsih-xxp-report; 1
X-XSS-Protection" "1; mode=block 1
1; mode=block; report=https://calcworkshop.report-uri.com/r/d/xss/enforce 1
1; mode=block, 1; mode=block, 1; mode=block 1
1; mode=block; report=https://provider.pl?gdsih-xxp-report; 1
-1; mode=block 1
1; mode=block; report=https://www.stopkillerrobots.org?gdsih-xxp-report; 1
1; mode=block; report=https://sentry.io/api/41432/security/?sentry_key=8263757b037c48dcafd3483e0970ca14 1
1; mode=block; report="https://rdmc.report-uri.com/r/d/xss/enforce" 1
1; mode=block; report=https://www.banknorwegian.no/log/csp 1
1; mode=block; report=/report-xss 1
1;mode=block 1
1; mode=block; report=https://6c20096530348707611466d249183c11.report-uri.com/r/d/xss/enforce 1
1; mode=block; report=https://www.banknorwegian.de/log/csp 1
1; mode=block; report=https://cisofy.report-uri.com/r/d/xss/enforce 1
1; report=https://failte.report-uri.com/r/d/xss/enforce 1
1; mode=block; report=https://cb-reporting.services.getactivationkey.com 1
1; mode=block; report=https://cirro.report-uri.com/r/d/xss/enforce 1
1; mode=block; report=https://www.hcpa.edu.br 1
1; mode=block; report="https://www.med24.no/httpReport/X-XSS-Protection/1701835041" 1
1; mode=block; report=https://rootbg.report-uri.com/r/d/xss/enforce 1
1; mode=block; report=https://hciyork.report-uri.com/r/d/xss/enforce 1
1; mode=block; report=/xss-report?source%5Baction%5D=show&source%5Bapp%5D=ShopifyAppStore&source%5Bcontroller%5D=merchant%2Fpartners&source%5Buuid%5D=ffede47d-f7c9-47a1-887a-9e3276574eb4 1
: 1 1
1; mode=block; report=https://dogsbody.report-uri.com/r/d/xss/enforce 1
1; mode=block; report=https://bitwoci.report-uri.com/r/d/xss/enforce 1
1; mode=block; report=https://www.spok.com?gdsih-xxp-report; 1
1; report=https://login.xtm.cloud:443/saas-manager/cspReport.serv 1
1; mod=block 1
1; block; 1
1; mode=block; report=https://arnove.report-uri.com/r/d/xss/enforce 1
1; mode=block; report=https://sentry.myiw.ru/api/6/security/?sentry_key=29777cbd17e945eea3f35027ada00ba9; 1
1; mode=block; report="https://www.med24.se/httpReport/X-XSS-Protection/1701823884" 1
1; mode=block; report=https://ntpages.report-uri.com/r/d/xss/enforce 1
1; mode=block; report=https://fotoskoda.report-uri.com/r/d/xss/enforce 1
1; mode=block; report=https://feldman.report-uri.com/r/d/xss/enforce 1
1; mode=block; report=https://www.ofen.de/xss/enforce 1
1; mode=block; report=https://www.ender-informatics.ch?gdsih-xxp-report; 1
upgrade-insecure-requests; base-uri 'self'; frame-ancestors 'self'; form-action 'self'; 1
1; mode=block; report=/xss-report?source%5Baction%5D=index&source%5Bapp%5D=Brochure&source%5Bcontroller%5D=engineering_blog%2Fblog&source%5Bdomain%5D=shopify.engineering&source%5Bsection%5D=brochure&source%5Buuid%5D=e7799a5b-6ab5-4697-945a-20bd6e4d5ead 1
0; report=/069b75c4f2e07da64b888cac9af4ea98c60c3e6787e0368d1a5ab34114eda24e 1
1; mode=block; report=https://wptouch.com/; 1
1; report=1; mode=block 1
1; mode=block; report=/xss-report?source%5Baction%5D=show&source%5Bapp%5D=ShopifyAppStore&source%5Bcontroller%5D=merchant%2Fapp_details&source%5Buuid%5D=4e16119d-f08d-4bd8-b059-81b27063438d 1
1; mode=block [2] 1
1; mode=block 1
1; mode=block 1
1; report=/security/xss.html 1
1; mode=block; report=https://cool110.report-uri.com/r/d/xss/enforce 1
1; mode=block; report=https://serge.report-uri.com/r/d/csp/enforce 1
'1'; mode='block' 1
1; mode=block; report=https://veracitycommon.report-uri.com/r/t/xss/enforce 1
1; mode=block; report=https://mills.report-uri.com/r/d/xss/enforce 1
1; mode=block; report=https://bigbank.report-uri.com/r/t/xss/enforce 1
1; mode=block; report=https://www.crossdresserheaven.com?gdsec-xxp-report; 1
1; mode=block; report=/xss-report?source%5Baction%5D=show&source%5Bapp%5D=Brochure&source%5Bcontroller%5D=content_marketing%2Fblog&source%5Bdomain%5D=www.shopify.com&source%5Bsection%5D=brochure&source%5Buuid%5D=84225ed4-a7fa-4881-b1ae-aaa5b87e3b24 1
1; mode=block; report=https://bbcsp.report-uri.com/r/d/xss/enforce 1
1; mode=block; report=https://forums.seloc.org/csp-hotline.php?xss-report 1
1; mode=block; always 1
1; mode=block; report=https://itsupport.kiev.ua/x-xss-protection-report 1
1; mode=block; report=https://www.zomato.com/cspreport.php 1
1; mode=block; report=https://katabat.com?gdsih-xxp-report; 1
1; mode=block;X-Frame-Options: SAMEORIGIN; 1
1; mode=block; report=https://secure.wonderline.eu/reports/xss-protection/ 1
1; mode=block; report=https://www.banknorwegian.se/log/csp 1
1; report=https://6d153c89aff98df62a0c4c4c2847c74e.report-uri.com/r/d/xss/enforce 1
* 1
1; mode=block; report=https://www.banknorwegian.dk/log/csp 1
1; mode=block; report=https://coinloan.report-uri.com/r/d/xss/enforce 1
1; mode=block; report="https://e44243558046671cd5cc224d223c92e6.report-uri.com/r/d/xss/enforce" 1
1; mode=block; report=https://www.unidata.it?gdsih-xxp-report; 1
1; report=http://m2ch.hk/browser-reports 1
1; mode=bolck 1
0; mode=allow 1
1; mode=block; report=https://intelepeer.ai?gdsih-xxp-report; 1
1; mode=block; report=https://flagee.cloud?gdsih-xxp-report; 1
1; report=0 1
1; mode=block; report=/xss-report?source%5Baction%5D=show&source%5Bapp%5D=ShopifyAppStore&source%5Bcontroller%5D=merchant%2Fapp_details&source%5Buuid%5D=24ec9c59-cb78-492f-b2d3-0141f755b2d2 1
1; mode=block; report=https://www.ibexres.com/public-api/xss-report 1
1; mode=b  lock 1
1; mode=block; report=https://energynet.report-uri.com/r/d/xss/enforce 1
1; mode=block; report=https://www.banknorwegian.fi/log/csp 1
1; mode=block; report=https://swimlane.com?gdsih-xxp-report; 1
1; report='https://www.telefonguru.hu/fooldal/sec_violations' 1
mode=block" 1
1; report=https://www.newyork.nl/?csp-violation-report=1 1
1; mode=block; report=https://f59c8b075bf66c5477bf5226c4e0a968.report-uri.com/r/d/xss/enforce 1
default-src: https:; frame-ancestors 'self' X-Frame-Options: SAMEORIGIN 1
1;mode=block; report=https://payroll2u.report-uri.com/r/d/xss/reportOnly 1
1; report=/main/sys/report 1
1;mode=block 1
1; mode=block; report=https://www.nrmca.org?gdsih-xxp-report; 1
0,0,0,0,0,0,0,0,0 1
1; mode=block; report=https://cashconverterscorp.report-uri.com/r/d/xss/enforce 1
2;mode=block 1
1; mode=block; report=https://sentry.hexn.io/api/2/security/?sentry_key=f4bb5ccf5ac8412a8088f9f1584e90fe 1
1; report=http://fasttypers.org/ReportMe.ashx 1
1; mode_block 1
1; mode=block[2] 1
0; report=/d5bcc29e34d8b6210cbfbc3acd7be0a65652590b064c60598822381e01ae1708 1
1; mode=block; report=https://report-uri.highwebmedia.com/r/t/xss/enforce 1
1; mode=block; report=https://judgeapps.report-uri.com/r/d/xss/enforce 1
1, 1, 1 1
1; report=https://centrum.animato.cz/getter.php?akce=xss-report 1
1; mode=block; report=https://pharmaboardroom.com?gdsih-xxp-report; 1
1; mode=block; report="https://lotusgroup.report-uri.com/r/d/xss/enforce" 1
1; report=/xss_report.php 1
1; mode=block; report=/xss-report?source%5Baction%5D=show&source%5Bapp%5D=ShopifyAppStore&source%5Bcontroller%5D=merchant%2Fapp_details&source%5Buuid%5D=3dffb2d3-f902-4207-a77d-c64fd8c78416 1
1; mode=block; report=https://blujaysolutions.com?gdsih-xxp-report; 1
1; mode=block; report=https://invb.ru/ 1
1;  mode=block, 1 1
mod=block 1
1; mode=1 1
1; report=https://promokodio.com/api/report/xss 1
'1' 1
1;        mode=block 1
1;mode=block;report=https://alphawave.report-uri.com/r/d/xss/enforce 1
1; mode=block; report=https://mnszrs.report-uri.com/r/d/staple/enforce 1
1; mode=block; report=https://api.jeurissen.co/reports/xss/web/playxylo.com 1
1\; mode=block 1
1; mode=block; report=https://cdslegal.com?gdsih-xxp-report; 1
1; mode=block1; mode=block 1
1; mode=block; report=https://tdstoragebay.report-uri.com/r/d/xss/enforce 1
1; mode=block; report=https://www.tevora.com?gdsih-xxp-report; 1
1; mode=block; report=https://www.resoposte.com?gdsih-xxp-report; 1
1, "mode=block" 1
"1;mode=block" 1
1; mode=block; report=https://security.itgalaxy.company/report 1
1; report=https://www.newyorkcity.fr/?csp-violation-report=1 1
1; mode=block; report=https://paulmromer.report-uri.com/r/d/xss/enforce 1
1; mode=block; report=https://www.nano-di.com?gdsih-xxp-report; 1
1; report=/Ajax/ContentSecurityPolicy/report 1
max-age=15768000 1
1; mode=block; report=https://engineer.report-uri.com/r/d/xss/enforce 1
1, mode=block, 1, mode=block 1
1; mode=block; preload; always 1
" 1
1; mode=block; report=http://revolution-laundry.localhost/?gdsih-xxp-report; 1
1; mode=block; report=https://www.hvst.com/csp-report 1
1; mode=block; report=https://reporting.richlj.com/xss 1
1; mode=block; report=https://www.serverhunter.com/log/report-uri/ 1
deny 1
0, 1; mode=block 1
1; mode=block; report=https://keeping.report-uri.com/r/d/xss/enforce 1
1; mode=block; report=https://reports.emoney.com/sh/xss 1
1; mode=block; report=https://mx.org.ua/x-xss-protection-report 1
: mod=block 1
1;		mode=block 1
1; mode=block; report=https://certfa.com/report/xss 1
1; mode=block; report=https://webtown.report-uri.com/r/d/xss/enforce 1
1; mode=block; report=https://fastquest.net?gdsih-xxp-report; 1
1;mode=block;report=https://bairwell.report-uri.com/r/d/csp/enforce 1
1; mode=block; report=https://pestakeholder.org?gdsih-xxp-report; 1
1; mode=block; report=https://arbinger.com?gdsih-xxp-report; 1