1. I login to my bank, but I forget to logout.
2. I go to an infected website on a different tab.
3. The infected website makes cross site scripting to my bank tab and steals my money.
This security hole existed a few years ago. Does cross site scripting still exist in a modern browser?