What triggers “Internet Explorer has modified this page to help prevent cross-site scripting.”?

Question

I\'m trying to implement a workaround for missing CORS functionality in Internet Explorer. For GET requests I use JSONP, no problem here. For small POST/DELETE/PUT requests

Answer 1

You can configure the X-XSS-Protection header on your server. This will tell IE to disable XSS protection on your site.