postMessage() II

This exercise covers how insecure calls to the JavaScript function postMessage() can be used to leak sensitive information when a listener does not filter the origin

medium diffculty Medium difficulty
average completion time icon
Less than an hour average completion time
number of users completed icon
916 users completed this exercise


Make sure you check out PentesterLab PRO and PentesterLab PRO Enterprise to develop your skills.