The same-origin-policy is one of several models that web browsers use to determine which JavaScript files in a webpage should be executed. This is determined by the domain (the origin).
Questions tagged [same-origin-policy]
146 questions
0
votes
1 answer
Custom JavaScript injection allowed in DOM of other origins
I am performing a security research on a development framework for thick client & mobile applications. The framework allows developers to inject custom JavaScript in the DOM of any origin.
This functionality is not evident to the user. As per my…
Aditya Chaudhary
- 149
- 1
- 1
- 5
0
votes
1 answer
Prevent javascript cross-origin write
Let's assume an attacker manages to inject this script in a login page:
const form = document.getElementsByTagName('form')[0];
form.addEventListener('submit', stealCredentials);
function stealCredentials() {
const login =…
CheddarLizzard
- 222
- 2
- 8
0
votes
3 answers
Why can't bypass SOP using "src" attribut in script tag?
I'm not familiar with Javascript, but I want to know what can't be done in this steps in order to bypass SOP and extract sensitive data :
set the tag
the browser retrives the content of…
Reda LM
- 367
- 3
- 11
0
votes
1 answer
Can Origin headers be sent with get variables or the whole url?
An application I'm working on responds to a wildcard Origin header by setting the Access-Control-Allow-Origin to subdomain.app.com if ending with .app.com.
However, if I append .app.com to a GET variable, as below:
Origin: example.com?q=.app.com
it…
0lly
- 56
- 4
0
votes
2 answers
Same origin policy pentesting?
As we all know that what is the SOP? As its very popular. But my question arises when, pentesting this functionality.
AS SOP provide the website to call the resources only from its domain. Ex. http: //example.com/ have the SOP functionality then…
januu agrawal
- 81
- 2
- 8
0
votes
1 answer
GitHub pages and same origin
I am working with the security team at my work to get a website accredited before I can publish it...It is a very simple webpage hosted on Github pages with only some javascript.
I kind of reached a roadblock in terms of creating the code to secure…
mireille raad
- 101
- 4
0
votes
2 answers
Setting Access-Control-Allow-Origin: * when session identifiers are injected in the HTTP headers
Is it considered as secure for an application to set a header access-control-allow-origin: * if during the normal usage of the application, the client credentials are injected in the headers by the JS code? E.g.:
GET…
christophetd
- 217
- 1
- 12
0
votes
1 answer
Same Origin Policy and CSRF-Tokens
If we trust browsers that they satisfy Same Origin Policy without bugs, would we still need CSRF-tokens?
Assuming server doesn't have CORS enabled:
As far as I know we are not allowed to do POST requests cross-origin, then why is there a CSRF…
EralpB
- 358
- 3
- 11
0
votes
1 answer
WebCrypto, SOP and Yubikeys
I've been following some discussions on WebApp Security mailing list regarding WebCrypto and SOP policies (100+ messages). One of the things that kind of sprang out was keys held in WebCrypto were not enumerable because they could be used as super…
user29925
-1
votes
1 answer
Applicability of Same Origin Policy (SOP) when IP address is remapped via NAT
When an inbound/outbound TCP/IP traffic is faced with NAT address mapping, it's perfectly possible to have a different IP address as your request origin every few minutes. This is how most of the commonplace web application receives the client's IP…
ha9u63ar
- 151
- 6
-2
votes
1 answer
is there any way to get the cookie from another tab or iframe's parent in browsers?
i was given a task to find a working way to bypass windows and android browsers same origin policy to be able to get the cookie of an open Tab in victim's browser (like Gmail or ... cookie).
but as far as i searched and read about this it seems that…
user106957