CVE Certified
GHDB

inurl:crossdomain filetype:xml intext:allow-access-from

prev next

Google search: inurl:crossdomain filetype:xml intext:allow-access-from

Hits: 1642

Submited: 2014-03-27

Locates crossdomain.xml files used by flash/flex/silverlight to
determine the cross domain policy of that site's
flash/flex/silverlight apps. An open setting of will allow a weaponized flash application hosted on an
attacker's site to read information from the target site while running
in a victim's browser.

--
Google+ http://google.com/+EricGragsone
Red Team http://www.crimsonagents.com/
Blue Team http://www.erisresearch.org/
Coding http://maetrics.github.io