User:TechnoSquirrel69/sandbox

From Wikipedia, the free encyclopedia

TS

hmm

Cross-site leaks [edit]

Example of a cross-site leak
Colored dice with white background
In the absence of a third party, the user's browser sends the web server an HTTP request. The server responds with a response depending on the request sent.
Colored dice with checkered background
An attacker identifies a vulnerable URL and phishes the user to their website using an email. When the user goes to the attacker's website, the attacker can make a malicious HTTP requests to the web server using the vulnerable URL.
Colored dice with checkered background
Reading the response to the malicious request sent by the attacker is blocked by the browser. However other factors like the response time or size can be measured by the attacker, leading to information about the user leaking to the attacker.



Test

Test.[1] How bout this and this