Hacker Newsnew | past | comments | ask | show | jobs | submitlogin

That is the original exploit mentioned in the accepted answer; however, Firefox and IE have disabled execution of javascript from the address bar, and I assume that Chrome is also moving to do the same thing.


And after that Hackers will start telling people do open their Concole in Developer Tools and paste the code there. I believe many people will do.


...which is exactly what this post is about..? That's the reason Facebook disables the DevTools console apparently.


But you rapidly reach a point beyond which most users can get to. Three steps: (1) open console, (2) copy, (3) paste is about the limit on what an average computer user can do these days.




Guidelines | FAQ | Lists | API | Security | Legal | Apply to YC | Contact

Search: