Public Vulnerability Disclosures CVE Assigned: CVE-2015-9544: xdLocalStorage magic iframe missing origin validation when receiving messages Mitre Blog CVE-2015-9545: xdLocalStorage client missing origin validation when receiving messages Mitre Blog CVE-2020-11610: xdLocalStorage magic iframe uses wildcard targetOrigin when sending messages Mitre Blog CVE-2020-11611: xdLocalStorage client uses wildcard targetOrigin when sending messages Mitre Blog No CVE Assigned/Requested Office365 ActiveSync Username Enumeration Blog Share:Click to share on Twitter (Opens in new window)Click to share on Facebook (Opens in new window)Click to share on Reddit (Opens in new window)Click to share on LinkedIn (Opens in new window)MoreClick to share on WhatsApp (Opens in new window)Click to share on Telegram (Opens in new window)Click to print (Opens in new window)Click to share on Skype (Opens in new window)Click to share on Pocket (Opens in new window)Click to share on Tumblr (Opens in new window)Click to share on Pinterest (Opens in new window)Click to email this to a friend (Opens in new window)