[tor-bugs] #20752 [Applications/Tor Browser]: Search box with DuckDuckGo (and other search engines) is broken on security level High and Medium-High

Tor Bug Tracker & Wiki blackhole at torproject.org
Wed Nov 23 20:29:01 UTC 2016


#20752: Search box with DuckDuckGo (and other search engines) is broken on security
level High and Medium-High
------------------------------------------+----------------------
     Reporter:  gk                        |      Owner:  tbb-team
         Type:  defect                    |     Status:  new
     Priority:  Medium                    |  Milestone:
    Component:  Applications/Tor Browser  |    Version:
     Severity:  Normal                    |   Keywords:
Actual Points:                            |  Parent ID:
       Points:                            |   Reviewer:
      Sponsor:                            |
------------------------------------------+----------------------
 It seems since the NoScript update to 2.9.5 searching with DuckDuckGo and
 other engines (like StartPage) is broken if the security slider is set to
 "Medium-High" or "High". NoScripts XSS filter starts interfering:
 {{{
 [NoScript XSS] Sanitized suspicious upload to
 [https://duckduckgo.com/html] from [[System Principal]]: transformed into
 a download-only GET request.
 }}}

--
Ticket URL: <https://trac.torproject.org/projects/tor/ticket/20752>
Tor Bug Tracker & Wiki <https://trac.torproject.org/>
The Tor Project: anonymity online


More information about the tor-bugs mailing list