Project

General

Profile

Actions
Copy link

Bug #91629

closed

external Links (if set as "external site") do not get rel="noreferrer" NOR rel="noopener"

Added by Martin Hotmann almost 4 years ago. Updated over 2 years ago.

Status:
Closed
Priority:
Should have
Assignee:
Oliver Hader
Category:
Security
Target version:
-
Start date:
2020-06-10
Due date:
% Done:

0%

Estimated time:
TYPO3 Version:
10
PHP Version:
7.4
Tags:
external links
Complexity:
Is Regression:
Sprint Focus:

Description

If a external link is set in the PageTree and then rendered/used in a menu this link will not get any rel="noopener" or rel="noreferrer" attribute at all.
But as a external link it should. Also Google (Lighthouse) is complaining about that this is a missing security feature.

Link about Google LightHouse complains about:
https://lighthouse-dot-webdotdevsite.appspot.com//lh/html?url=https%3A%2F%2Fnew.hotmann.de#:~:text=Links%20to%20cross-origin%20destinations%20are%20unsafe

Files

external Link.PNG (9.36 KB) external Link.PNG explanation of which "external Link" I mean. Martin Hotmann, 2020-06-10 09:48

Related issues 1 (1 open0 closed)

Is duplicate of TYPO3 Core - Bug #95051: rel="noreferrer" is not set by cross site linksUnder Review2021-08-31

Actions
Actions
Copy link

Also available in: Atom PDF