JavaScript and third party cookies -
Say that a site is foo.com
that loads JavaScript from the site Bar.com
. Now, JavaScript from the site says that bar.com
tries to read the cookies using document.cookies
. I was using JavaScript under this assumption, you can read all the cookies set in the browser, despite your source. But it has come to know that javascript can access cookies set by the site bar.com
only by bar.com
and not anyone else. If this is the case, how are the attacks of script injection that steals cookies?
but it has been found that javascript from site bar.com is set by bar.com only Can access cookies and not anyone else.
This is not true what matters, where & lt; Script & gt; HTML document with element
is not a URL of JS file, which is
I suspect your problem when you have property document.cookie
( Singular! ) document.cookies
) < / P>
Comments
Post a Comment