top | item 36171265 (no title) lincolnq | 2 years ago Iframes bypass CORS, so the trick is to use an Iframe and figure out (using some side channel since you can’t peek into the frame) whether the iframe loaded the content successfully or whether it loaded an error page. discuss order hn newest throwawayadvsec|2 years ago I mean websites that blocks cors usually blocks iframes too?
throwawayadvsec|2 years ago