When using some of our integration partner's tools to access HiddenLevers you may get an error with the term "cross site scripting" included. This is caused by a security feature in Internet Explorer called the XSS Filter which is enabled by default.  The XSS Filter was designed to stop what are called scripted injection attacks when accessing a second website through a webpage.  Unfortunately, the XSS Filter also blocks you from using HiddenLevers from the partner tool.


To disable the XSS Filter in Internet Explorer, please follow these steps:

  1. Open Internet Explorer.
  2. Click “Tools” and then “Internet Options.”
  3. Click the “Security” tab.
  4. Click “Custom level.”
  5. Scroll to the bottom of the list.
  6. Select “Disable” under “Enable XSS Filter” and click Ok.
  7. Close the window and restart Internet Explorer.

Please note that disabling the XSS Filter does pose a potential security risk when visiting websites that may contain malicious code.  To minimize any risk we do not recommend using the system you use for accessing HiddenLevers for general web browsing.