this free, open source add-on allows JavaScript, Java, Flash and other plugins to be executed only by trusted web sites of your choice (e.g. your online bank).

NoScript also provides the most powerful anti-XSS and anti-Clickjacking protection ever available in a browser.

NoScript's unique whitelist based pre-emptive script blocking approach prevents exploitation of security vulnerabilities (known and even not known yet!) with no loss of functionality...

You can enable JavaScript, Java and plugin execution for sites you trust with a simple left-click on the NoScript status bar icon (look at the picture), or using the contextual menu, for easier operation in popup statusbar-less windows.

What's New:

  • [Chromium] Prevent duplicated MSE placeholders (e.g. on Youtube)
  • Fixed external scripts included in HEAD of file:// pages failing (issue #115)
  • [XSS] Updated HTML 5 events inventory x Best effort to make media placeholders visible and clickable
  • Placeholders for MSE on Chromium too
  • Use invalid IP rather than domain name to prevent offline status from breaking sync messaging in Chromium
  • Removed empty exportFunction() Chromium shim
  • Updated TLDs