Description
Same Origin Method Execution (SOME) is a web application attack which abuses callback endpoints by forcing a victim into executing arbitrary scripting methods of any page on the endpoint's domain.
Remediation
Same Origin Method Execution (SOME) can be mitigated using static callbacks, a white-list approach or cross-domain messaging. Consult Web references for more information about Mitigation and Fix.
References
Related Vulnerabilities
Internet Information Services Improper Input Validation Vulnerability (CVE-2009-4445)
WordPress Plugin Gmedia Photo Gallery Arbitrary File Upload (1.2.1)
Magento Improper Input Validation Vulnerability (CVE-2022-24086)
XML external entity injection (variant)
OpenSSL Improper Input Validation Vulnerability (CVE-2013-4353)