Full title: Evernote Web Clipper Same-Origin Policy Bypass Vulnerability 
Category: web applications
Platform: multiple
Evernote Web Clipper suffered from a same-origin policy bypass vulnerability. The link to the demo exploit was a 403 at the time of addition and has not been included in this post.

# 0day.today @ http://0day.today/