Velocity Reviews - Computer Hardware Reviews

Velocity Reviews > Newsgroups > Programming > Javascript > Cross-site security, target and frames

Reply
Thread Tools

Cross-site security, target and frames

 
 
Kim Noer
Guest
Posts: n/a
 
      10-13-2004
Hi there ...

I'm having some troubles getting a form posted back to a frame, which was
the 'launching' page to the popup.

Ie. I want to get 'thanksabunch.asp' to post back to the frame1 location

http://site1/frame1.asp launches https://site2/payment.asp which form post
to https://site2/thanksabunch.asp which form post to
http://site1/paymentreceived.asp

in 'thanksabunch.asp' I have a form which contains method="post"
name="payform" target="frame1", all this works in IE, but not in Firefox. So
what I want is a way to post the form data to 'paymentreceived.asp' in
'frame1'. I've fooled around with parent.document, but it list its parent as
'thanksabunch.asp'.

I'm quite sure I can't reach any object on site1, since there's some
cross-site security taking place, effectively preventing me from doing it.

--
I doubt, therefore I might be.


 
Reply With Quote
 
 
 
 
Kim Noer
Guest
Posts: n/a
 
      10-14-2004
"Kim Noer" <(E-Mail Removed)> wrote in message
news:(E-Mail Removed)

> I'm having some troubles getting a form posted back to a frame, which
> was the 'launching' page to the popup.


Is there really nobody that can help me out here? I'm pretty clueless on
what do to, so any help will be appriciated!

--
I doubt, therefore I might be.


 
Reply With Quote
 
 
 
 
Philip Ronan
Guest
Posts: n/a
 
      10-14-2004
Kim Noer wrote:

> I'm quite sure I can't reach any object on site1, since there's some
> cross-site security taking place, effectively preventing me from doing it.


I'm quite sure you're correct. So don't do it

Lately I've been receiving the odd email purporting to be from a major bank
asking clients to update their details. You click on the link in the email
and your browser opens a page in the spammer's website that spawns a pop-up
window and immediately redirects to a page in the bank's website. The pop-up
contains a form that asks you to fill in your credit card details, PIN
number, etc., so that the spammer can presumably empty your bank account
into theirs.

What you're attempting to do sounds very much like this sort of scam, and
I'm glad it isn't working.

--
Philip Ronan
http://www.velocityreviews.com/forums/(E-Mail Removed)
(Please remove the "z"s if replying by email)


 
Reply With Quote
 
 
 
Reply

Thread Tools

Posting Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts

BB code is On
Smilies are On
[IMG] code is On
HTML code is Off
Trackbacks are On
Pingbacks are On
Refbacks are Off


Similar Threads
Thread Thread Starter Forum Replies Last Post
Re: Frames Target and External HTML richard HTML 1 12-25-2008 11:49 PM
Re: Frames Target and External HTML Jukka K. Korpela HTML 0 12-24-2008 02:36 PM
Problem in setting Target Node and Target Tree Property mohit ASP .Net 0 01-23-2008 05:41 AM
frames and sending text to target Eric HTML 5 12-07-2005 01:41 AM
[XML Schema] Including a schema document with absent target namespace to a schema with specified target namespace Stanimir Stamenkov XML 3 04-25-2005 09:59 AM



Advertisments