Simon Willison’s Weblog

6th June 2007 - Link Blog

Firefox promiscuous IFRAME access bug. Lets malicious sites “display disruptive or misleading contents in the context of an attacked site” and intercept keystrokes! The demo worked in Camino 1.5 as well. Avoid using Gecko-based browsers until this is patched?

Posted 6th June 2007 at 10 am

Recent articles

My fireside chat about agentic engineering at the Pragmatic Summit - 14th March 2026
Perhaps not Boring Technology after all - 9th March 2026
Can coding agents relicense open source through a “clean room” implementation of code? - 5th March 2026

This is a link post by Simon Willison, posted on 6th June 2007.

camino 6 firefox 90 iframes 21 michal-zalewski 3 security 578

Monthly briefing

Sponsor me for $10/month and get a curated email digest of the month's most important LLM developments.

Pay me to send you less!

Sponsor & subscribe