This is a good write up on the non-nefarious uses of cross domain Ajax requests, but obviously this has other scary ramifactions.

This entry was posted on Thursday, January 1st, 1970 at 12:00 am and is filed under XSS, Webappsec. You can leave a response as well.