Communication from an iframe that has content from a domain other than the one the iframe is contained within is a constant source of frustration - as browsers prevent this kind of activity due to built-in security policies. Here is a technique to perform cross-site scripting (XSS) in just such an environment with example code and a real-world example.
Search
Categories
- Accessibility (3)
- Agile (1)
- Browsers (7)
- CSS (4)
- Forms (1)
- Graphical (2)
- HTML/XHTML (2)
- JavaScript (9)
- PHP (1)
Tags
Accessibility Agile AJAX Binding Browsers CSS Demos Doctype Events Firefox Forms Front-end Graphical HTML HTML/XHTML IE6 IE7 Iframe Images Internet Explorer JavaScript JQuery MacOSX PHP PNG Safari spell Standards Testing Web Development XSSArchives
- January 2009
- December 2008
- October 2008
- August 2007
- July 2007
- June 2007
- May 2007
- April 2007
- May 2006
- December 2005
- November 2005