X
Tap here to go to the mobile version of the site.

Support Forum

My javascript stopped working today when viewing my C Drive content, but still OK once at website

Posted

I use javascript:change_frames extensively on my websites to map a thumbnail to 2 or 3 different iframes and it has always worked in all browsers ios, android - everything. But just now it will not work in Firefox as I try to test my pages prior to FTP to my hosting, although it DOES work once on the www. It this caused by some new version and can I revert to a version that does not zap my javascript? Thanks in advance as this is driving me crazy (and to Chrome or Edge after 24 years using Mozilla stuff)

I use javascript:change_frames extensively on my websites to map a thumbnail to 2 or 3 different iframes and it has always worked in all browsers ios, android - everything. But just now it will not work in Firefox as I try to test my pages prior to FTP to my hosting, although it DOES work once on the www. It this caused by some new version and can I revert to a version that does not zap my javascript? Thanks in advance as this is driving me crazy (and to Chrome or Edge after 24 years using Mozilla stuff)

Chosen solution

Hi childsupport, could you check for messages in Firefox's Web Console. You can open the Web Console in the lower part of the tab using either:

  • "3-bar" menu button > Web Developer > Web Console
  • (menu bar) Tools > Web Developer > Web Console
  • (Windows) Ctrl+Shift+k

Then navigate around as you usually do and check for error or security messages. Something new you might see in Firefox 68 would be along the following lines:

Cross-Origin Request Blocked: The Same Origin Policy disallows reading the remote resource at file:///... (Reason: CORS request not http)

This is caused by a security patch to prevent untrusted local files from reading files in the same folder or subfolders: https://www.mozilla.org/en-US/security/advisories/mfsa2019-21/#CVE-2019-11730

If you need to roll back the patch:

(1) In a new tab, type or paste about:config in the address bar and press Enter/Return. Click the button promising to be careful or accepting the risk.

(2) In the search box above the list, type or paste uniq and pause while the list is filtered

(3) Double-click the privacy.file_unique_origin preference to switch the value from true to false

To mitigate the vulnerability: If you save pages from untrusted sites in a separate folder, e.g., Downloads\Untrusted, then it would be difficult for an attacker to find any valuable content using local file links.

Read this answer in context 2
Quote

Additional System Details

Installed Plug-ins

standard setup

Application

  • User Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:68.0) Gecko/20100101 Firefox/68.0

More Information

jscher2000
  • Top 10 Contributor
8570 solutions 70085 answers

Chosen Solution

Hi childsupport, could you check for messages in Firefox's Web Console. You can open the Web Console in the lower part of the tab using either:

  • "3-bar" menu button > Web Developer > Web Console
  • (menu bar) Tools > Web Developer > Web Console
  • (Windows) Ctrl+Shift+k

Then navigate around as you usually do and check for error or security messages. Something new you might see in Firefox 68 would be along the following lines:

Cross-Origin Request Blocked: The Same Origin Policy disallows reading the remote resource at file:///... (Reason: CORS request not http)

This is caused by a security patch to prevent untrusted local files from reading files in the same folder or subfolders: https://www.mozilla.org/en-US/security/advisories/mfsa2019-21/#CVE-2019-11730

If you need to roll back the patch:

(1) In a new tab, type or paste about:config in the address bar and press Enter/Return. Click the button promising to be careful or accepting the risk.

(2) In the search box above the list, type or paste uniq and pause while the list is filtered

(3) Double-click the privacy.file_unique_origin preference to switch the value from true to false

To mitigate the vulnerability: If you save pages from untrusted sites in a separate folder, e.g., Downloads\Untrusted, then it would be difficult for an attacker to find any valuable content using local file links.

Hi childsupport, could you check for messages in Firefox's Web Console. You can open the Web Console in the lower part of the tab using either: * "3-bar" menu button > Web Developer > Web Console * (menu bar) Tools > Web Developer > Web Console * (Windows) Ctrl+Shift+k Then navigate around as you usually do and check for error or security messages. Something new you might see in Firefox 68 would be along the following lines: Cross-Origin Request Blocked: The Same Origin Policy disallows reading the remote resource at file:///... (Reason: CORS request not http) This is caused by a security patch to prevent untrusted local files from reading files in the same folder or subfolders: https://www.mozilla.org/en-US/security/advisories/mfsa2019-21/#CVE-2019-11730 If you need to roll back the patch: (1) In a new tab, type or paste '''about:config''' in the address bar and press Enter/Return. Click the button promising to be careful or accepting the risk. (2) In the search box above the list, type or paste '''uniq''' and pause while the list is filtered (3) Double-click the '''privacy.file_unique_origin''' preference to switch the value from true to false To mitigate the vulnerability: If you save pages from untrusted sites in a separate folder, e.g., Downloads\Untrusted, then it would be difficult for an attacker to find any valuable content using local file links.
Was this helpful to you? 2
Quote

Question owner

Thanks a million, so back to using firefox again and forget the rest

Thanks a million, so back to using firefox again and forget the rest
Was this helpful to you?
Quote
Ask a question

You must log in to your account to reply to posts. Please start a new question, if you do not have an account yet.