Chromeでcan escape its sandboxingの警告が出ている

kujirahand / nako3storage

なでしこ3貯蔵庫 - なでしこのプログラムを保存共有できるWebサービス

MIT License

4 stars 1 forks source link

Open kujirahand opened 1 year ago

kujirahand commented 1 year ago

An iframe which has both allow-scripts and allow-same-origin for its sandbox attribute can escape its sandboxing.