Rank: Member
Joined: 2/24/2016(UTC) Posts: 95 Thanks: 13 times
|
In a HTML article about opening a link in a new tab, there was mention of security concern with just using the target="_blank" without the rel="noopener noreferrer" to prevent tabnabbing (gaining partial access to page through the window.object API).
Is this something we need to add to all of our target="_blank" code, or is this something that is natively in place on the back end?
|
|
|
|
Rank: Administration
Joined: 4/2/2004(UTC) Posts: 2,393 Location: Hummelstown, PA Thanks: 6 times Was thanked: 163 time(s) in 158 post(s)
|
BVC does not restrict or alter the HTML that you enter via the admin or when editing files, so if you want to protect against this type of thing then you would need to alter the HTML. |
Aaron Sherrick BV Commerce Toll-free 888-665-8637 - Int'l +1 717-220-0012 |
|
|
|
Forum Jump
You cannot post new topics in this forum.
You cannot reply to topics in this forum.
You cannot delete your posts in this forum.
You cannot edit your posts in this forum.
You cannot create polls in this forum.
You cannot vote in polls in this forum.