Y
Hacker News
new
|
ask
|
show
|
jobs
by
simonw
4363 days ago
This is a really, really nasty attack. If you allow JSONP on your domain you are almost certainly vulnerable.