X-XSS-Protection

HTTP response header

X-XSS-Protection enables browser cross-site scripting filter

Header usage statistics

X-XSS-Protection response header information and usage statistics.
Websites using header X-XSS-Protection8,027,912
Percentage of websites that use X-XSS-Protection header9.79%
Total discovered header valuesMore than 10,000
Header uses directivesYes
Header values are unique or randomNo
Most popular in the country United States

X-XSS-Protection directives (4 total)

  • 0
  • 1
  • mode
  • report

X-XSS-Protection Directives

X-XSS-Protection directives value information and usage statistics
DirectiveShareWebsites countUnique Values
190.15%7,236,9862
mode85.96%6,900,88412
09.25%742,9042
report2.18%174,781199

X-XSS-Protection header usage distribution by website rank



Geographical Distribution

Header usage distribution by websites across the globe.



Websites utilizing X-XSS-Protection

List of websites that use X-XSS-Protection header
DomainCountryRankContacts
fonts.googleapis.com United States1
www.facebook.com United States2
google.com United States3
www.google.com United States3
youtube.com United States6
www.youtube.com United States6
See full domain list

Common header values

List of top common X-XSS-Protection header values
Header valueValue prevalence
1; mode=block81.87%
07.62%
14.84%
1;mode=block2.22%
0;report=https://cdn.website-start.de/app/reporting/policyviolation/submit1.29%
"1; mode=block"0.52%
1; mode=block;0.30%
0;report=https://cdn.initial-website.com/app/reporting/policyviolation/submit0.19%
1; mode=block0.15%
value=1; mode=block0.09%
1; mode-block0.08%
"1; mode=block" always0.04%
0;report=https://cdn.eu.mywebsite-editor.com/app/reporting/policyviolation/submit0.03%
0; mode=block0.03%
0;0.02%
1 ; mode=block0.02%
1\; mode=block0.02%
1;0.01%
1;mod=block0.01%
1; mode = block0.01%