Requesting a website by client side script = Cross Side Scripting Hack. But requesting a website by server side script is not a hack! Why?
问题 Generally, when we want to show the contents of some web page in the same page, we go for ajax requests. If say, I request to a web page in different domain with AJAX, it is not allowed because of the Cross side scripting error. But why is it allowed to access via a server side page. For e.g. we can use CURL in php to access any site.? Why is this feature OK for server side scripting and NOT OK for Client Side Scripting? 回答1: Because a malicious script can open an external page without the