scripttag, the SOP doesn’t apply, because scripts have to be able to be included cross-domain. An attacker can thus read everything that was included using the
Arrayand access to
this, a non-global variable can be leaked as well.
Arrayaccesses the data we’re interested in. An attacker can, as described in the preceding clause, override
sliceand steal the secrets.
scripttag, using the data as variable and function names.
Arrayconstructor was able to read the complete address book of a google account.