Tabnapping Vulnerability in Edge Browser [Unpatched]

Hello Friends,

Recently, I found a bug in Edge browser which allows hackers to perform TabNapping attack because the browser doesn't support rel="noopener" tag.

If you don't know about tabnabbing or tabnapping, then visit this 


Open Edge browser and visit this post
Next, click on the link given below
Your previous tab will be redirected to which proves the vulnerability.

You can also check this on Chrome and Firefox.

To prevent this, developer should use the complete tag ie rel="nofollow noopener noreferrer".

Hope Microsoft will fix this bug and other bugs in Future.


Popular posts from this blog

XSS like a Pro

Email Spoofing for Beginners

DoS on WAF Protected Sites by Abusing Cookie