Browser Patch to Prevent Cross-Site Scripting Was Deployed to Entrench Big Tech (gigablast.com) 3 points by EchoReflection 3y ago ↗ HN
[–] stop50 3y ago ↗ If one bit of js can query google and bing, what hinders an evil developer to query my current session of my banks website? Or my <your favourite online store> account?
1 comment
[ 4.2 ms ] story [ 15.5 ms ] thread