The host is installed with Google Chrome before 47.0.2526.73 and is prone to same origin policy bypass vulnerability. The flaw is present in the application, which fails to handle the DOM implementation. Successful exploitation allows remote attackers to bypass same origin policy.