Simplified versions (one host) of various cross-domain interactions and stealing sensitive data using the browser's cache

Look at the console1

Now check attacker's site