安全策略不允许除非得到许可如http://www.web.com
---------------
document.domain = "yourdomain.com"
...
http://www.yourdomain.com
-----------------------------
<iframe name="mydomainpage" src="test.htm">
<iframe>
<iframe name="otherdomain" src="http://www.web.com">
<iframe>
test.htm
--------------
parent.otherdomain.document.body.....
---------------
document.domain = "yourdomain.com"
...
http://www.yourdomain.com
-----------------------------
<iframe name="mydomainpage" src="test.htm">
<iframe>
<iframe name="otherdomain" src="http://www.web.com">
<iframe>
test.htm
--------------
parent.otherdomain.document.body.....
4.htm
<html>
<head></head>
<body >
<iframe name=frm src="4.asp"></iframe><INPUT type="button" value="Button" id=button1 name=button1 onclick="test()">
<SCRIPT LANGUAGE=javascript>
<!--
function test(){
alert(frm.document.all.name.value)
}
//-->
</SCRIPT>
</body>
</html>
4.asp
<%
dim xmlhttp
set xmlhttp=server.CreateObject("Microsoft.XMLHTTP")
xmlhttp.open "get","http://www.csdn.net",false
xmlhttp.sendResponse.Write xmlhttp.responseText
%>