Base Tag Hijacking
Invicti detected that it's possible to control the href attribute of
base tag in the HTML.
- Hijacking user's active session.
- Mounting phishing attacks.
- Intercepting data and performing man-in-the-middle attacks.
basetag. Whitelist it if the dynamic usage is necessary. Content-Security-Policy (CSP) base-uri directive can also help you prevent to change the <base> tag element. The base-uri directive defines the URIs that a user agent may use as the document base URL.
Content-Security-Policy: base-uri 'self'