X
Thinta lapha ukuze uye kuveshini yamakhalekhukhwini kusayithi.

Isithangami Sabeseki

How to return for special querys a predefined value

Kuphostiwe

Hi guys,

years ago you have been able to read out the browserhistory of a user through bruteforcing the visited links with a link list, css and js.

Meanwhile is this hack stopped the .getComputedStyle will be always as if the user never visited the a special link.

Nowadays we can still read out the browserhistory of users.

Example 1 (on which Im currently working on and where I need support): Through collecting cookies and reading out the domains they belong to we are still able to collect browserhistorys of users.

To stop it Im looking for a similar method like the predefined Value for .getComputedStyle with the CSS hack.

In generell Im trying to do if a javascript calls a cookie from a different Domain to return a predefined value.

Kind regards

Suad

Hi guys, years ago you have been able to read out the browserhistory of a user through bruteforcing the visited links with a link list, css and js. Meanwhile is this hack stopped the .getComputedStyle will be always as if the user never visited the a special link. Nowadays we can still read out the browserhistory of users. Example 1 (on which Im currently working on and where I need support): Through collecting cookies and reading out the domains they belong to we are still able to collect browserhistorys of users. To stop it Im looking for a similar method like the predefined Value for .getComputedStyle with the CSS hack. In generell Im trying to do if a javascript calls a cookie from a different Domain to return a predefined value. Kind regards Suad
Isicaphuno

Eminye Imininingwane Yohlelo

Isisebenziso

  • I-ejenti Engumsebenzisi: Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/71.0.3578.98 Safari/537.36

Eminye Imininingwane

jscher2000
  • Top 10 Contributor
8089 izisombululo 66095 izimpendulo

How does a script read cookies from a different domain?

If you have discovered a bug in same-origin enforcement, you should file it here and mark it security-sensitive:

https://bugzilla.mozilla.org/

How does a script read cookies from a different domain? * https://developer.mozilla.org/docs/Web/API/Document/cookie * https://developer.mozilla.org/docs/Web/Security/Same-origin_policy If you have discovered a bug in same-origin enforcement, you should file it here and mark it security-sensitive: https://bugzilla.mozilla.org/
Ingabe lokhu kube usizo kuwena?
Isicaphuno
Buza umbuzo

Kufanele ulogele ukungena ku-akhawunti yakho ukuze uphendule amaphosti. Uyacelwauqale umbuzo omusha, uma ungekabi nayo i-akhawunti namanje.