| CONSOLE MESSAGE: line 1: Unsafe JavaScript attempt to access frame with URL http://127.0.0.1:8000/security/dataURL/xss-DENIED-from-data-url-sub-frame.html from frame with URL data:text/html,%3Chtml%3E%3Cbody%3E%3Cp%3EInner%20iframe.%3C/p%3E%3Cscript%3Eparent.document.getElementById('accessMe').innerHTML%20=%20'FAIL:%20Cross%20frame%20access%20from%20a%20data:%20URL%20was%20allowed.';%3C/script%3E%3Ciframe%3E%3C/iframe%3E%3C/body%3E%3C/html%3E. Domains, protocols and ports must match. |
| |
| CONSOLE MESSAGE: line 1: TypeError: Undefined value |
| This tests that a data: URL loaded in an iframe doesn't have access to its parent's frame |
| |
| |
| PASS: Cross frame access from a data: URL was denied. |
| |
| |
| |
| -------- |
| Frame: 'aFrame' |
| -------- |
| Inner iframe. |
| |
| |
| |
| -------- |
| Frame: '<!--framePath //aFrame/<!--frame0-->-->' |
| -------- |
| |