To be precise: It is not a feature in environments handling private data, which exactly nullifies MicroSofts publishings, as they have been known for being based on what in 1998 already has been seen as an insecurity-possibility In 2003 | 2004ĪJAX was the first non-aggressive use-case that became globally prominent due to IE supporting a limitless XMLHttpRequest. If broadened to b2b-networks you may call it a feature, because MicroSoft tried to push it for over a decade as such, from around 2005 on.
also to the web known as Cross-Site-Scripting (shortened: XSS)
) You can'tĪs you already pointed out in your question, you have the possibility to change the setting to 'Access data sources across domain', which in general should allow to operate e.g by XMLHttpRequest | ADO across domains Īs you also noticed and noted, that you can execute Google Chrome by given argument '-disable-web-security' from the CMD-Shell, the perspective seems to wander to a tender web-perspective, so i will use vocabulary that hopefully may ease the readers understanding.
