Django Book 翻译
菜单>:
TOC
返回
原文:
A malicious site can coerce you to visit the URL ``example.com/logout`` by including that URL as a hidden ``<iframe>`` on its own (malicious) page. Thus, if youre logged in to the ``example.com`` webmail account and visit the malicious page that has an ``<iframe>`` to ``example.com/logout`` , the act of visiting the malicious page will log you out from ``example.com`` .
翻译:
通过在(恶意)网页上用隐藏一个指向 URL ``example.com/logout`` 的 ``<iframe>`` ,恶意网站可以强迫你访问该 URL 。因此,如果你登录 ``example.com`` 的网页邮件账号之后,访问了带有指向 ``example.com/logout`` 之 ``<iframe>`` 的恶意站点,访问该恶意页面的动作将使你登出 ``example.com`` 。
备注:
译者: