X-XSS-Protection

HTTP response header

X-XSS-Protection enables browser cross-site scripting filter

Header usage statistics

X-XSS-Protection response header information and usage statistics.

Websites using header X-XSS-Protection8,102,399
Percentage of websites that use X-XSS-Protection header9.58%
Total discovered header valuesMore than 10,000
Header uses directivesYes
Header values are unique or randomNo
Most popular in the country United States

X-XSS-Protection directives (4 total)

  • 0
  • 1
  • mode
  • report

X-XSS-Protection Directives

X-XSS-Protection directives value information and usage statistics

DirectiveShareWebsites countUnique Values
190.10%7,300,2952
mode85.90%6,960,28312
09.31%754,0682
report2.17%175,983198

X-XSS-Protection header usage distribution by website popularity



Geographical Distribution

Header usage distribution by websites across the globe.






Websites utilizing X-XSS-Protection

List of websites that use X-XSS-Protection header

DomainCountryRankContacts
fonts.googleapis.com United States1
www.facebook.com United States2
google.com United States3
www.google.com United States3
youtube.com United States6
www.youtube.com United States6
See full domain list

Common header values

List of top common X-XSS-Protection header values

Header valueValue prevalence
1; mode=block81.84%
07.68%
14.87%
1;mode=block2.21%
0;report=https://cdn.website-start.de/app/reporting/policyviolation/submit1.29%
"1; mode=block"0.51%
1; mode=block;0.30%
0;report=https://cdn.initial-website.com/app/reporting/policyviolation/submit0.19%
1; mode=block0.16%
value=1; mode=block0.09%
1; mode-block0.04%
"1; mode=block" always0.04%
0;report=https://cdn.eu.mywebsite-editor.com/app/reporting/policyviolation/submit0.03%
0; mode=block0.02%
0;0.02%
1 ; mode=block0.02%
1;0.02%
1\; mode=block0.02%
: 1;mode=block0.01%
1;mod=block0.01%