Can't upload files after upgrading from kentico 10 to 11

Elm information security Company asked on December 3, 2018 14:57

After upgrading from Kentico 10 to Kentico 11 we face many issues as the following :- 1- when login to admin we received the following error with every single action.

9Error parsing header X-XSS-Protection: 1; mode=block, 1;mode=block, 1; mode=block: expected semicolon at character position 13. The default protections will be applied.

2- We can't upload any file because of the following :

GetResource.ashx?scriptmodule=/AdminControls/MultiFileUploader.js:129 Mixed Content: The page at 'https://#########/Admin/CMSAdministration.aspx#95a82f36-9c40-45f0-86f1-39aa44db9a77' was loaded over HTTPS, but requested an insecure XMLHttpRequest endpoint 'http://###########/CMSModules/Content/CMSPages/Authenticated/MultiFileUploader.ashx?InstanceGuid=e8f73d79-d9ad-4797-aef8-97860a35d2e4&filename=img_cam1_20180920155816.jpg&FilesCount=1&ResizeArgs=0;0;0&GetBytes=true&AttachmentArgs=DocumentID%7C0%7CDocumentParentNodeID%7C354%7CNodeClassName%7Ccustom.InfographicItem%7CAttachmentGUIDColumnName%7CThumbnail%7CAttachmentGUID%7C00000000-0000-0000-0000-000000000000%7CAttachmentGroupGUID%7C00000000-0000-0000-0000-000000000000%7CFormGUID%7C6578a249-8c2c-4c46-a63c-d9...Parameters=SourceType%7CAttachment%7CParentElementID%7Cm_c_f_Thumbnail_Thumbnail%7CIsInsertMode%7CTrue%7CAfterSaveJavascript%7C%7CTargetFolderPath%7C%7CTargetFileName%7C%7CIncludeNewItemInfo%7CTrue%7COnlyImages%7CFalse%7CRaiseOnClick%7CFalse%7CTargetAliasPath%7C%7CTargetCulture%7C%7CEventTarget%7C%7CHash%7C4eeab3427c08bb1fcad2b1f181cf9a1f352dab36b6b4911c99a7e6749ee2913c&CurrentFileIndex=1&FileSize=2319322&AllowedExtensions=jpg;jpeg;png;|Hash|7e2a451356b33a95c246afeda180b61fba83f42e99a2762b252c25d109cc60d2'. This request has been blocked; the content must be served over HTTPS. uploadFile @ GetResource.ashx?scriptmodule=/AdminControls/MultiFileUploader.js:129 GetResource.ashx?scriptmodule=/AdminControls/MultiFileUploader.js:219 Mixed Content: The page at 'https://##########/Admin/CMSAdministration.aspx#95a82f36-9c40-45f0-86f1-39aa44db9a77' was loaded over HTTPS, but requested an insecure XMLHttpRequest endpoint 'http://#######/CMSModules/Content/CMSPages/Authenticated/MultiFileUploader.ashx?InstanceGuid=e8f73d79-d9ad-4797-aef8-97860a35d2e4&filename=img_cam1_20180920155816.jpg&FilesCount=1&ResizeArgs=0;0;0&complete=true&StartByte=0&AttachmentArgs=DocumentID%7C0%7CDocumentParentNodeID%7C354%7CNodeClassName%7Ccustom.InfographicItem%7CAttachmentGUIDColumnName%7CThumbnail%7CAttachmentGUID%7C00000000-0000-0000-0000-000000000000%7CAttachmentGroupGUID%7C00000000-0000-0000-0000-000000000000%7CFormGUID%7C6578a249-8c2c-...Parameters=SourceType%7CAttachment%7CParentElementID%7Cm_c_f_Thumbnail_Thumbnail%7CIsInsertMode%7CTrue%7CAfterSaveJavascript%7C%7CTargetFolderPath%7C%7CTargetFileName%7C%7CIncludeNewItemInfo%7CTrue%7COnlyImages%7CFalse%7CRaiseOnClick%7CFalse%7CTargetAliasPath%7C%7CTargetCulture%7C%7CEventTarget%7C%7CHash%7C4eeab3427c08bb1fcad2b1f181cf9a1f352dab36b6b4911c99a7e6749ee2913c&CurrentFileIndex=1&FileSize=2319322&AllowedExtensions=jpg;jpeg;png;|Hash|7e2a451356b33a95c246afeda180b61fba83f42e99a2762b252c25d109cc60d2'. This request has been blocked; the content must be served over HTTPS.

   Please, sign in to be able to submit a new answer.