Launchpad lacks clickjacking protection
Bug #911637 reported by
David
This bug affects 1 person
Affects | Status | Importance | Assigned to | Milestone | |
---|---|---|---|---|---|
Launchpad itself |
Fix Released
|
Critical
|
William Grant |
Bug Description
Launchpad according to wgrant lacks clickjacking protection.
IMHO Launchpad should use the X-Frame-Options header as part of a clickjacking defence where this is possible.
summary: |
- Add clickjacking protection(X-Frame-Options) to launchpad + Launchpad lacks clickjacking protection |
Changed in launchpad: | |
status: | New → Triaged |
importance: | Undecided → Critical |
To post a comment you must log in.
/me Nudge.