Using window.open(”,"_blank") can this be XSS exploited?
If I have javascript that opens a window using the code below, the content is a user supplied variable that is not sanatized. Is there any security risk in this situation. The content will only be show back to the same user. No additional … Continue reading Using window.open(”,"_blank") can this be XSS exploited?