Y
Hacker News
new
|
ask
|
show
|
jobs
by
homakov
4816 days ago
double checked
http://seclab.stanford.edu/websec/framebusting/framebust.pdf
there are many parent-navigation bypasses in this paper but nothing for innerHTML='' (not taking into account sandbox and xss auditor)