Insecure Frame (External) - Twitter Block

Created on 5 March 2019, over 5 years ago
Updated 26 January 2023, over 1 year ago

Netsparker Cloud identified an external insecure or misconfigured iframe.

Impact
IFrame sandboxing enables a set of extra restrictions for the content in the inline frame.
Same Origin policy allows one window to access properties/functions of another one only if they come from the same protocol, the same port and also the same domain.

Remedial Procedure
Apply sandboxing in inline frame

For untrusted content, avoid the usage of seamless attribute and allow-top-navigation, allow-popups and allow-scripts in sandbox attribute.

💬 Support request
Status

Closed: outdated

Version

2.0

Component

Code

Created by

🇮🇳India preetam.chari

Live updates comments and jobs are added and updated live.
Sign in to follow issues

Comments & Activities

Not all content is available!

It's likely this issue predates Contrib.social: some issue and comment data are missing.

Production build 0.69.0 2024