Question

120

Refused to execute a JavaScript script. Source code of script found within request

rated 0 times [ 127] [ 7] / answers: 1 / hits: 61858 / 15 Years ago, sat, october 10, 2009, 12:00:00

In WebKit I get the following error on my JavaScript:

Refused to execute a JavaScript script. The source code of script found within request.

The code is for a JavaScript spinner, see ASCII Art.

The code used to work OK and is still working correctly in Camino and Firefox. The error only seems to be thrown when the page is saved via a POST and then retrieved via a GET. It happens in both Chrome/Mac and Safari/Mac.

Anyone know what this means, and how to fix this?

Answers

Only authorized users can answer the question. Please sign in first, or register a free account.

tyasiaalmap

Add To Favorites

Follow

Total Points: 294

Total Questions: 107

Total Answers: 108

Location: Libya

Member since Mon, Dec 7, 2020

4 Years ago

answered 15 Years ago georgeh · Accepted Answer

It's a security measure to prevent XSS (cross-site scripting) attacks.

This happens when some JavaScript code is sent to the server via an HTTP POST request, and the same code comes back via the HTTP response. If Chrome detects this situation, the script is refused to run, and you get the error message Refused to execute a JavaScript script. Source code of script found within request.

Also see this blogpost about Security in Depth: New Security Features.