3 Ways to Fix ERR_BLOCKED_BY_XSS_AUDITOR in WordPress

If you encounter an error code ERR_BLOCKED_BY_XSS_AUDITOR when accessing certain functions in WordPress using the Google Chrome browser, it is because Google thinks an attack has occurred cross-site scripting.

Simply put, Chrome suspects that HTML or Javascript loaded on web pages shouldn’t be needed at all.

Chrome displays pages like this to prevent vulnerabilities, even though it’s actually just a result of the browser misunderstanding the website.

There are three solutions to solve ERR_BLOCKED_BY_XSS_AUDITOR in WordPress. The solutions below are intended for both website owners and site visitors.

#1 Editing WordPress .htaccess files via cPanel

Do this method if you are site owner.

WordPress users with cPanel can add custom code in their .htaccess to avoid XSS errors. Check out the guide.

1. Go to your hosting cPanel page. Usually cPanel can be accessed via addresswebsite.com/cpanel (change with your website).


2. Click File Manager.


3. Go to the problematic website folder or public_html if you only have one site. Right click on the file .htaccess then select Edit.


4. Click Edit once again.


5. Enter the following code into .htaccess so that it looks like the one in the screenshot.

 Header set X-XSS-Protection "0; mode=block"

6. If it has been edited, click Save Changes then Close.


7. Go back to your WordPress site and try again if the problem still occurs.

See also  7 Ways to Make Chrome Android Faster

In very rare cases, errors may still occur. If so, the next method is to issue an exception command to Google Chrome so that the XSS error is not displayed.

#2 Giving exception commands in Google Chrome

Do this method if you are visitors or site owner.

Simply put, we can make shortcuts Google Chrome comes with a command to ignore XSS errors.

1. Right click on the desktop, select New then Shortcuts.


2. Enter the following directory address in the field provided, then Next.

For Google Chrome 64-bit:

"C:\Program Files\Google\Chrome\Application\chrome.exe" -disable-xss-auditor

For 32-bit Google Chrome:

"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" -disable-xss-auditor

3. Give a name, for example Google Chrome XSS as a differentiator with the original Chrome shortcut. Click Finish.


4. XSS error free shortcut has been created. Double-click to open it.


If you access Chrome with this shortcut, the error ERR_BLOCKED_BY_XSS_AUDITOR will not appear because it has been excluded via the command attached to the shortcut directory.

Meanwhile, there is another easier way, namely…

#3 Try using another browser

Do this method if you are visitors or site owner.

Considering that this error only occurs in Chrome, it never hurts to access the website using another browser such as Mozilla Firefox or Microsoft Edge.

Also make sure to always update Chrome to the latest version because often the error that appears is just a browser misconception of the website, not something that is harmful to users.

On the other hand, website owners must be responsive every time they get an error code like this because site visitors are likely to get it too. Consult the IT team or hosting management if this problem still occurs.

See also  How to Reset Google Chrome to Initial Settings