Windows 10 will reach EOS (end of support) on October 14, 2025. For more information, see this article.

Avatar for Username

Search Support

Avoid support scams. We will never ask you to call or text a phone number or share personal information. Please report suspicious activity using the “Report Abuse” option.

Learn More

This thread was archived. Please ask a new question if you need help.

Content Security Policy: The page's settings blocked the loading of a resource at eval ("script-src").

  • 1 reply
  • 1 has this problem
  • 129 views
  • Last reply by admin278

admin278
admin278
more options

I have a website running on a virtual machine on my PC. I access it through m-nlp.test.

Suddenly, my js files are not loaded anymore, although I have not changed anything at the website.

I get the following error/warnings when I open my website with Firefox:

>Loading failed for the with source “http://m-nlp.test/js/index.js?v=4”.

>Content Security Policy: The page's settings blocked the loading of a resource at eval ("script-src").

and the js is not working. I don't understand why a `Content Security Policy` is raised, because the js files that I try to load are accessed from the same domain (http://m-nlp.test/).

Weird facts:

  • The live website on the production server is working in Firefox.
  • m-nlp.test works in Chrome
  • m-nlp.test works in incognito window in Firefox.

I cleared cache for m-nlp.test but it is still showing the same error.

What could cause it?

I have a website running on a virtual machine on my PC. I access it through m-nlp.test. Suddenly, my js files are not loaded anymore, although I have not changed anything at the website. I get the following error/warnings when I open my website with Firefox: >Loading failed for the with source “http://m-nlp.test/js/index.js?v=4”. >Content Security Policy: The page's settings blocked the loading of a resource at eval ("script-src"). and the js is not working. I don't understand why a `Content Security Policy` is raised, because the js files that I try to load are accessed from the same domain (http://m-nlp.test/). Weird facts: * The live website on the production server is working in Firefox. * m-nlp.test works in Chrome * m-nlp.test works in incognito window in Firefox. I cleared cache for m-nlp.test but it is still showing the same error. What could cause it?
Attached screenshots

Chosen solution

Okay I fixed it, I had the "Disable JS" plugin activated. Whoups.

Read this answer in context 👍 0

All Replies (1)

admin278
admin278 Question owner
more options

Chosen Solution

Okay I fixed it, I had the "Disable JS" plugin activated. Whoups.