nsane.forums Posted January 30, 2009 Share Posted January 30, 2009 A bug in the JavaScript Engine means that it is possible to circumvent the Same Origin Policy. According to Google, JavaScript can be used to read the URL, other attributes and data from other frames. The update also fixes XSS vulnerabilities View: Original Article Link to comment Share on other sites More sharing options...
Recommended Posts
Archived
This topic is now archived and is closed to further replies.