Perform this test in your Mozilla browser of choice,
http://lcamtuf.coredump.cx/ifsnatch/
Have you secured your iFrame from being snatched?
Do you know about referrer forgery and its implications?
Answers use NoScript, go to Options, Embedding and block iFrames,
polonus