Simon Willison’s Weblog

23rd October 2006 - Link Blog

Poking new holes with Flash Crossdomain Policy files. Very scary attack: if you can upload a file to a server, you can probably open it up to XSRF.

Posted 23rd October 2006 at 12:11 am

Recent articles

Live blog: Code w/ Claude 2026 - 6th May 2026
Vibe coding and agentic engineering are getting closer than I'd like - 6th May 2026
LLM 0.32a0 is a major backwards-compatible refactor - 29th April 2026

This is a link post by Simon Willison, posted on 23rd October 2006.

Monthly briefing

Sponsor me for $10/month and get a curated email digest of the month's most important LLM developments.

Pay me to send you less!

Sponsor & subscribe