X-XSS-Protection

HTTP response header

X-XSS-Protection enables browser cross-site scripting filter

Header usage statistics

X-XSS-Protection response header information and usage statistics.

Websites using header X-XSS-Protection8,221,221
Percentage of websites that use X-XSS-Protection header8.62%
Total discovered header values4,714
Header uses directivesYes
Header values are unique or randomNo
Most popular in the country US

X-XSS-Protection directives (4 total)

  • 0
  • 1
  • mode
  • report

X-XSS-Protection Directives

X-XSS-Protection directives value information and usage statistics

DirectiveShareWebsites countUnique Values
190.69%7,455,9553
mode86.36%7,100,09314
08.74%718,5202
report1.93%158,849210

Distribution by websites popularity

X-XSS-Protection detection in the top websites by popularity

Top 10k sites3,392 websites
Top 100k sites29,825 websites
Top 1m sites214,669 websites

Websites utilizing X-XSS-Protection

List of websites that use X-XSS-Protection header

See full domain list
Flat price per the report, subscription is not required.

Geographical Distribution

Header usage distribution by websites across the globe.






Common header values

List of top common X-XSS-Protection header values

Header valueValue prevalence
1; mode=block82.28%
06.92%
14.95%
1;mode=block2.07%
0;report=https://cdn.website-start.de/app/reporting/policyviolation/submit1.48%
1; mode=block;0.91%
"1; mode=block"0.53%
0;report=https://cdn.initial-website.com/app/reporting/policyviolation/submit0.23%
1; mode=block0.15%
0;report=https://cdn.eu.mywebsite-editor.com/app/reporting/policyviolation/submit0.04%
"1; mode=block" always0.03%
0;0.03%
: 1; mode=block0.02%
1 ; mode=block0.02%
: 1;mode=block0.02%
0; mode=block0.02%
1;0.02%
1; mode=block; report=https://report-uri.highwebmedia.com/r/t/xss/enforce0.02%
1\; mode=block0.01%
1; mode-block0.01%