<iframe> tag cause open redirect · hackmdio/codimd#959

(2 评论) (0 反应) (0 负责人)JavaScript (8,949 star) (1,038 fork)batch import

Hacktoberfesthelp wantedsecurity

描述

If the source website has the script like this:

<script type="text/javascript">
if(window != top) {
    top.location.href = location.href;
}
</script>

It may cause a open redirect issue on codimd. I use www.plurk.com which has anti-clickjacking code to demo.

<iframe src="https://www.plurk.com/k1tten_">

Broswer verison:

Safari 11.0.2: triggered
Firefox Quantum 62.0 : triggered
Chrome 68.0.3440.106: not triggered

技术栈: javascripthtmlcss
领域: securityfrontend
议题类型: security
难度: 3
预计时间: under 1 hour
活动状态: stale
清晰度: clear
前置要求: Content Security PolicyHTTP headers
新手友好度: 40
研究方向: Investigate where HTTP headers are set in the server code (likely in app.js or server.js). Add a Content Security Policy header with the 'frame ancestors' directive set to 'none' or 'self' to prevent embedding. Also consider adding an X Frame Options header set to 'DENY' for broader browser support. Test the fix by embedding the page in an iframe and verifying no redirect occurs.