- From: publicocean0 <notifications@github.com>
- Date: Sat, 04 Jun 2016 03:44:45 -0700
- To: slightlyoff/ServiceWorker <ServiceWorker@noreply.github.com>
- Cc:
Received on Saturday, 4 June 2016 10:45:12 UTC
If you are able to execute a XSS attack in a domain , you can execute code non only inside the worker. It seams a tautology. The body is a function , if you can modify a function you can modify also the remaining scripts on the page. --- You are receiving this because you are subscribed to this thread. Reply to this email directly or view it on GitHub: https://github.com/slightlyoff/ServiceWorker/issues/902#issuecomment-223749125
Received on Saturday, 4 June 2016 10:45:12 UTC