WebKit JavaScript 'onload()' Event Cross Domain Scripting Vulnerability

To exploit this issue, an attacker must entice an unsuspecting victim into visiting a malicious webpage.

The following proof of concept is available:


 

Privacy Statement
Copyright 2010, SecurityFocus