Hacking Exposed Web 2.0: Web 2.0 Security Secrets and Solutions

Prev | Current Page 169 | Next

Rich Cannings, Himanshu Dwivedi, Zane Lackey, and Alex Stamos

"Hacking Exposed Web 2.0: Web 2.0 Security Secrets and Solutions"

The attack simply needs to create an iFrame using
Chapter 3: Cross-Domain Attacks 83
JavaScript, create a form matching the structure of the targeted form inside of this
iFrame, and perform a form submit. A rather immature attacker may create a malicious
web page like this:

Books for you

Rich Cannings, Himanshu Dwivedi, Zane Lackey, and Alex Stamos

"Hacking Exposed Web 2.0: Web 2.0 Security Secrets and Solutions"

You are Stinky! If you don??™t believe me, look at your GoatFriends
profile!

Books for you

Rich Cannings, Himanshu Dwivedi, Zane Lackey, and Alex Stamos

"Hacking Exposed Web 2.0: Web 2.0 Security Secrets and Solutions"

You are Stinky! If you don??™t believe me, look at your GoatFriendsprofile!

You are Stinky! If you don??™t believe me, look at your GoatFriends
profile!