CVE Assigned: CVE-2015-9544: xdLocalStorage magic iframe missing origin validation when receiving messages Mitre Blog CVE-2015-9545: xdLocalStorage client missing origin validation when receiving m…