[wp-trac] [WordPress Trac] #43187: Add rel="noopener noreferrer" to links with target="_blank"
WordPress Trac
noreply at wordpress.org
Wed Jan 31 10:57:55 UTC 2018
#43187: Add rel="noopener noreferrer" to links with target="_blank"
-------------------------+-----------------------------
Reporter: notnownikki | Owner:
Type: enhancement | Status: new
Priority: normal | Milestone: Awaiting Review
Component: General | Version:
Severity: normal | Keywords:
Focuses: |
-------------------------+-----------------------------
To protect against phishing attacks made possible by links having
`target="_blank"` without the appropriate `rel` attribute[1], we should
have a content filter that adds `rel="noopener noreferrer"` where needed.
[1] https://www.jitbit.com/alexblog/256-targetblank---the-most-
underestimated-vulnerability-ever/
--
Ticket URL: <https://core.trac.wordpress.org/ticket/43187>
WordPress Trac <https://core.trac.wordpress.org/>
WordPress publishing platform
More information about the wp-trac
mailing list