Jump to content

Clickjacking

From mediawiki.org
This page is a translated version of the page Clickjacking and the translation is 67% complete.

Clickjacking, as defined on Wikipedia, is "a malicious technique of tricking a user into clicking on something different from what the user perceives, thus potentially revealing confidential information or allowing others to take control of their computer while clicking on seemingly innocuous objects, including web pages."

HTMLForm

Wenn Sie HTMLForm benutzen und es erlauben wollen, dass das Formular in einem Frame verwendet wird, müssen Sie die Methode displayForm von HTMLForm überschreiben und $wgOut ->allowClickjacking(); in der überschriebenen Funktion aufrufen.

See also