Hacker News new | past | comments | ask | show | jobs | submit login

loading the website from referral data in a frame might not be too smart... I could poison those referral headers with some exploit loolkit and boom, you expose your users to a lot of BS...

Example: https://simpleanalytics.com/simpleanalytics.com/referrers/fa...




We did build a screenshot app for this: https://github.com/simpleanalytics/screenshot-grabber


My bad, I did not catch that (should have probably checked before posting that.

At least that's a lot less dangerous; now people at least have to click on it.

Sorry for jumping to that first conclusion.


No worries!


What do you mean? That's a screenshot of the site, not an iframe. Could you further explain how this could be exploited?




Guidelines | FAQ | Lists | API | Security | Legal | Apply to YC | Contact

Search: