A way around XSS?
Posted
by rushonerok
on Stack Overflow
See other posts from Stack Overflow
or by rushonerok
Published on 2010-03-23T18:47:06Z
Indexed on
2010/03/23
18:53 UTC
Read the original article
Hit count: 618
In my page I have an script reference to the autoHeight.js file below. I also have an iframe that I want to resize using this code. In firebug I get this error
Error: Permission denied for <http://www.siena.edu> to get property HTMLDocument.body from <https://siteframework.siena.edu>. Source File: https://siteframework.siena.edu/FormManager/action/v2/autoHeight.js Line: 4
I am assuming it is because they are on different domains that it won't execute it. This is to prevent XSS right? Is there a way around it?
© Stack Overflow or respective owner