- 🇺🇸United States smustgrave
Closing as outdated as D10 just released so focus will be going toward D9/D10 support mainly.
Will keep an eye on the 7.x branch for reviews.
Netsparker Cloud identified an external insecure or misconfigured iframe.
Impact
IFrame sandboxing enables a set of extra restrictions for the content in the inline frame.
Same Origin policy allows one window to access properties/functions of another one only if they come from the same protocol, the same port and also the same domain.
Remedial Procedure
Apply sandboxing in inline frame
For untrusted content, avoid the usage of seamless attribute and allow-top-navigation, allow-popups and allow-scripts in sandbox attribute.
Closed: outdated
2.0
Code
Not all content is available!
It's likely this issue predates Contrib.social: some issue and comment data are missing.
Closing as outdated as D10 just released so focus will be going toward D9/D10 support mainly.
Will keep an eye on the 7.x branch for reviews.