I have an iframe with this CSS rule in the header section of the page:
html{
display:none;
}
and then this javascript code:
if (self == top)
document.documentElement.style.display = 'block';
else
top.location = self.location;
Is it possible to trick it thinking to be the top ?
I know that using X-Frame-Options
header with SAMEORIGIN is a better protection, but i wanted just to know if it is possible to break this one and eventually how so that i can give it away without the need of modify php code.
Note: the page is mine.