LOGBOOK

HELP

Quiz Entry - updated: 2026.06.20

What are XS-Leaks (Cross-Site Leaks) and how do they work?

Side-channel attacks: even without reading another site's data directly, an attacker measures observable side effects (load timing, onload/onerror, cache hits, frame counts) to infer cross-origin information like "is this user logged in?"

XS-Leaks exploit browser side channels to leak information across origins.

How it works:

  • Web content often combines resources from multiple sources (e.g., YouTube embed on Facebook)
  • Rendering external content creates observable timing differences
  • Attackers measure these timing differences to infer information

Side channel examples:

  • Load timing: Measure how long resources take to load
  • onload/onerror events: Detect if resource exists
  • Cache timing: Determine if resource was cached (previously visited)
  • Frame counting: Count iframes in a page

Impact: Can detect login status, infer user data, determine if user has specific content.

See: XS-Leaks Wiki — comprehensive catalog of cross-site leak techniques

From Quiz: SPRG / Input Validation & Output Encoding | Updated: Jun 20, 2026