diff --git a/includes/ckeditor.lib.inc b/includes/ckeditor.lib.inc
index dc14992..7551895 100644
--- a/includes/ckeditor.lib.inc
+++ b/includes/ckeditor.lib.inc
@@ -1344,6 +1344,7 @@ function ckeditor_load_by_field( $field, $format, $show_toggle = TRUE, $add_fiel
                 $load_method = $profile->settings['ckeditor_load_method'];
                 $load_time_out = $profile->settings['ckeditor_load_time_out'];
             }
+            drupal_add_js(array('ckeditor' => array('xss_url' => url('ckeditor/xss'))), 'setting');
             drupal_add_js($module_drupal_path . '/includes/ckeditor.utils.js', array('type' => 'file', 'scope' => 'footer') );
             if (isset($load_method)) {
                 drupal_add_js($editor_path . '/' . $load_method, array('type' => 'file', 'scope' => 'footer'));
diff --git a/includes/ckeditor.utils.js b/includes/ckeditor.utils.js
index 0943525..0ba9306 100644
--- a/includes/ckeditor.utils.js
+++ b/includes/ckeditor.utils.js
@@ -125,7 +125,7 @@ window.CKEDITOR_BASEPATH = Drupal.settings.ckeditor.editor_path;
         if (run_filter && ($("#" + textarea_id).val().length > 0) && typeof(ckeditor_obj.input_formats[ckeditor_obj.elements[textarea_id]]) != 'undefined' && ((ckeditor_obj.input_formats[ckeditor_obj.elements[textarea_id]]['ss'] == 1 && typeof(Drupal.settings.ckeditor.autostart) != 'undefined' && typeof(Drupal.settings.ckeditor.autostart[textarea_id]) != 'undefined') || ckeditor_obj.input_formats[ckeditor_obj.elements[textarea_id]]['ss'] == 2)) {
             $.ajax({
                 type: 'POST',
-                url: Drupal.settings.basePath + 'index.php?q=ckeditor/xss',
+                url: Drupal.settings.ckeditor.xss_url,
                 async: false,
                 data: {
                     text: $('#' + textarea_id).val(),