Open coffeetocode opened 7 years ago
Small issue, but if we really don't trust outbound sites then we should null out the referrer. ref: https://www.jitbit.com/alexblog/256-targetblank---the-most-underestimated-vulnerability-ever/
Small issue, but if we really don't trust outbound sites then we should null out the referrer. ref: https://www.jitbit.com/alexblog/256-targetblank---the-most-underestimated-vulnerability-ever/