JavaScript and third party cookies -


Say that a site is foo.com that loads JavaScript from the site Bar.com . Now, JavaScript from the site says that bar.com tries to read the cookies using document.cookies . I was using JavaScript under this assumption, you can read all the cookies set in the browser, despite your source. But it has come to know that javascript can access cookies set by the site bar.com only by bar.com and not anyone else. If this is the case, how are the attacks of script injection that steals cookies?

but it has been found that javascript from site bar.com is set by bar.com only Can access cookies and not anyone else.

This is not true what matters, where & lt; Script & gt; HTML document with element is not a URL of JS file, which is is mentioned in the src attribute.

I suspect your problem when you have property document.cookie ( Singular! ) document.cookies ) < / P>


Comments

Popular posts from this blog

c# - sqlDecimal to decimal clr stored procedure Unable to cast object of type 'System.Data.SqlTypes.SqlDecimal' to type 'System.IConvertible' -

Calling GetGUIThreadInfo from Outlook VBA -

Obfuscating Python code? -