Previous release adds “Security Downgrade Warning”

Feb 7, 2013 20:11 GMT  ·  By

NoScript extension for Firefox has been updated twice recently, one build following the other at a very short distance. The latest revision at the moment is 2.6.5.1.

The changelog for this build consists in a single line that reads “forced unicode conversions more resilient to invalid input.”

The previous release (2.6.5), though, removed limited injection chance allowing redirection of XSS vulnerable pages to an integral IP and added “Security Downgrade Warning,” which suggests blacklist mode as a better option than uninstalling, in order to retain scripting-unrelated protections.

Also, the awareness for less used charset has been added to script injection checks and the legacy uninstall hooks and related localized strings have been removed.

NoScript allows JavaScript, Java, Flash and other plugins to be executed only by trusted websites of your choice. You can download it from this page.