Closed julianlam closed 7 years ago
Received vulnerability report allowing malicious users to change the location of the page (among other things) of the opening tab if target="_blank" is used. Setting noopener (and noreferrer for older browsers) fixes this unintentional leak.
target="_blank"
noopener
noreferrer
Cheers @nleush :smile:
julianlam
commented
7 years ago
Received vulnerability report allowing malicious users to change the location of the page (among other things) of the opening tab if
target="_blank"is used. Settingnoopener(andnoreferrerfor older browsers) fixes this unintentional leak.