A way around XSS?

Posted by rushonerok on Stack Overflow See other posts from Stack Overflow or by rushonerok
Published on 2010-03-23T18:47:06Z Indexed on 2010/03/23 18:53 UTC
Read the original article Hit count: 618

Filed under:
|
|

In my page I have an script reference to the autoHeight.js file below. I also have an iframe that I want to resize using this code. In firebug I get this error

Error: Permission denied for <http://www.siena.edu> to get property HTMLDocument.body from <https://siteframework.siena.edu>. Source File: https://siteframework.siena.edu/FormManager/action/v2/autoHeight.js Line: 4

I am assuming it is because they are on different domains that it won't execute it. This is to prevent XSS right? Is there a way around it?

© Stack Overflow or respective owner

Related posts about xss

Related posts about JavaScript