Member-only story
Ways to Exploit Cross site leaks
What is Cross Site Leaks Vulnerability?
Cross Site Leaks is a browser vulnerability that is also known as XS leaks or browser side channel attack. Both of these names refer to the same thing. This vulnerability manifests itself whenever there is an insufficient flow of information along the communication connection. This attack can retrieve sensitive information about users by leveraging other websites or circumventing the policy against accessing content from the same origin. Policies known as “same origin” are those that specify the conditions under which a given domain’s documents, files, and material can be exchanged with other domains.
For instance, if an attacker is successful in getting a response to any request, say in the form of a yes or no, then he will seek to acquire additional information. The attacker will then make an attempt to determine the answer from the information provided, such as asking questions like “does this id belong to the user” or “are you logged in as an administrator?” Let us discuss it in detail:
