Join GitHub today
GitHub is home to over 36 million developers working together to host and review code, manage projects, and build software together.Sign up
Tabnabbing vulnerability in snow theme #2438
Steps for Reproduction
It would be expected that the rel property be set to noopener (possibly also norefferer and nofollow)
The issue is in
referenced this issue
Dec 21, 2018
Hey @jhchen !
Do you have any timeline to release a bugfix version soon? Or could you create a new patch tag 1.3.7 at the mitigating commit (aceaf9f) and release a patch update?
As it is right now, this issue probably shouldn't be closed because it still requires action by the maintainer before the vulnerability is actually fixed for users.