Fix reverse tabnabbing vulnerability with improper URL protocol (!79727) · Merge requests · GitLab.org / GitLab

What does this MR do and why?

URLs with an invalid protocol delimiter like http:evil.com were mistakenly considered internal URLs by Banzai ExternalLinkFilter.

Therefore, the rel="nofollow noreferrer noopener" attribute was not added to the anchor, leaving the site vulnerable to reverse tabnabbing.

This commit fixes it.

MR acceptance checklist

This checklist encourages us to confirm any changes have been analyzed to reduce risks in quality, performance, reliability, security, and maintainability.

I have evaluated the MR acceptance checklist for this MR.

Fix reverse tabnabbing vulnerability with improper URL protocol

What does this MR do and why?

MR acceptance checklist

Merge request reports