你即將離開本站

並前往http://homakov.blogspot.com/2013/04/html5-sandbox-bad-idea.html

HTML5 Sandbox - a bad idea - Egor Homakov

The iframe code can change top.location or open a phishing popup window ... to simply use 'SITE/playground?code=alert(1)' as an XSS hole?

確定! 回上一頁

查詢 「iframe sandbox xss」的人也找了:

  1. iframe popup
    2.
  2. iframe isolation
    3.
  3. use of iframe without sandbox
    4.
  4. disable iframe
    5.
  5. iframe vs embed security
    6.
  6. readonly iframe
    7.
  7. sandbox property
    8.
  8. iframe allow redirect
    9.