2017-06-08, 15:24
(2017-06-08, 03:16)Milhouse Wrote:(2017-06-08, 02:43)kkoa Wrote: Wouldn't it still be possbile to make a form targetting a frame to hijack Kodi with a post request then?
Not entirely sure.
I don't see any reason why it wouldn't work.
Code:
<form action="http://libreelec:8080/jsonrpc?[RPC-REQUEST]" method="post"></form>
Then submit it via js and you'd have the same insecurity as before.