- A vulnerability which uses the circumstance that a script referenced through a
script
element is exempt from the same-origin policy, as scripts need to work across domains. An attacker may access and use what is being loaded using the respective script, and thus leaked across origins.
- Previous term: Cross-site request forgery
- Next term: Cross-site scripting
- Random term: Acq-hiring