SM
SM
Sep 8, 2018 · 1 min read

Agree with the overall premise but a lot depends on the functionality of specific apps. There are so many potential attacks possible with Seasurf even if there is no direct impact. It could be used as a vector for other attacks because there is a trust placed on authenticated user.