Vulnerabilities/

Insecure Inline Frame

Impact: Medium

Description

An inline frame tag (iframe) on the page refers to an external resource, and no sandbox is set. This allows the external URL to trick users into doing unwanted actions like submitting passwords.

Recommendation

Set sandbox attribute for iframes with external URL.

References

Last updated on February 15, 2023

Use SmartScanner Free version to test for this issue

Download