|
|
|
|
|
|
by arthurschreiber
4763 days ago
|
|
|
That's _exactly_ what XSS is about. One possible way to exploit things like this is if I send you a link to a website, that embeds the target page through an iframe with javascript output injected. I could then have the JS steal your cookies/session or worse. |
|
|