Y
Hacker News
new
|
ask
|
show
|
jobs
by
chadscira
3435 days ago
If they don't have X-Frame-Options the attacker can also just use a 1x1 iframe on a popular website or shitty ad network to trigger that page to load