Solving postMessage() IV

This exercise covers how insecure calls to the JavaScript function postMessage() can be used to leak sensitive information when a listener does not filter the Origin and X-Frame-Options is used

PRO
Tier
Medium
< 1 Hr.
887
Orange Badge