Inclusion of Functionality from Untrusted Control Sphere

The sofware should trust third-part functionality (e.g. web widget, library, or other source of functionality). Problems with security mechanisms may let malicious information to access potentially sensitive information or DOM of web application. Bypassing protection system, attackers cause downloading of malicious code that allows malware to disclose and steal private data or user's cookies and gain excessive privileges for performing untrusted activities.