postMessage() II

This exercise covers how insecure calls to the JavaScript function postMessage() can be used to leak sensitive information when a listener does not filter the origin

PRO
content
medium diffculty Medium difficulty
average completion time icon
Less than an hour average completion time
number of users completed icon
916 users completed this exercise

Course





Make sure you check out PentesterLab PRO and PentesterLab PRO Enterprise to develop your skills.