Unsafe use of target=”_blank”by@sachindra149
4,235 reads
4,235 reads

Unsafe use of target=”_blank”

by Sachindra1mApril 28th, 2020
Read on Terminal Reader
Read this story w/o Javascript
tldt arrow

Too Long; Didn't Read

Unsafe use of target=”_blank” attribute to open a new webpage can create a major security threat to your application. The issue is the webpage that we are linking our existing page to gains a partial access to the linking page, or in other words, the target page or URL gains access to our parent page from where the user is redirected to a new URL. This happens through the windowopener object of Javascript. The attacker can change the.opener to some malicious page and also the parent page. In case the. parent page has the same look and feel of the user intended page, he might end up sharing. credentials or secure information.

Company Mentioned

Mention Thumbnail
featured image - Unsafe use of target=”_blank”
Sachindra HackerNoon profile picture
Sachindra

Sachindra

@sachindra149

Front End Engineer

Learn More
LEARN MORE ABOUT @SACHINDRA149'S
EXPERTISE AND PLACE ON THE INTERNET.

Share Your Thoughts

About Author

Sachindra HackerNoon profile picture
Sachindra@sachindra149
Front End Engineer

TOPICS

THIS ARTICLE WAS FEATURED IN...

Permanent on Arweave
Read on Terminal Reader
Read this story in a terminal
 Terminal
Read this story w/o Javascript
Read this story w/o Javascript
 Lite
L O A D I N G
. . . comments & more!