RyotaK 8494f6a085 Don't accept sandbox attribute ...

Because sandbox is whitelist attribute, attacker will be able to create iframe that has more permission than default.

Signed-off-by: RyotaK <49341894+ry0tak@users.noreply.github.com>

2019-10-22 12:04:12 +02:00

2.8 KiB

Raw Blame History

View Raw