0

since search engines or at least my search bubble is polluting the keywords "iframe", "security", "access" and such with answers regarding escaping from iframes as in "protect yourself against iframes", i would like to ask here:

  • Do iframes securely isolate the iframe's internals against access by the parent?

  • If a secret is used in an iframe, can it be exfiltrated?

Thank you for your answers.

burner-account
  • 109
  • 4
  • 1
    Have you checked out previous related questions? For example: https://stackoverflow.com/questions/1452871/how-can-i-access-iframe-elements-with-javascript – Iliass Nassibane Feb 22 '21 at 21:09
  • No, of course not, why would i. Especially not, as my first paragraph describes my endeavour to solve this without asking. Why would anyone, really? /s But thanks for the link. – burner-account Feb 22 '21 at 23:42

0 Answers0