I wouldn't be surprised if there was legacy software that depended on this behav... | Hacker News

Hacker News new | past | comments | ask | show | jobs | submit

login

gruez on May 5, 2016 | parent | context | favorite | on: Target=”_blank” is an underestimated vulnerability

I wouldn't be surprised if there was legacy software that depended on this behavior. Restricting URL change to same-origin will work much better

Guidelines | FAQ | Lists | API | Security | Legal | Apply to YC | Contact