Same origin method execution (SOME)

Description

Manual confirmation is required for this alert.

Same Origin Method Execution (SOME) is a web application attack which abuses callback endpoints by forcing a victim into executing arbitrary scripting methods of any page on the endpoint's domain.

Remediation

Same Origin Method Execution (SOME) can be mitigated using static callbacks, a white-list approach or cross-domain messaging. Consult Web references for more information about Mitigation and Fix.

References
Severity
Classification
Tags
  • Abuse Of Functionality