swift-webview-config-allows-js-open-windows
swift-webview-config-allows-js-open-windows
Webviews were observed that explictly allow JavaScript in an WKWebview to open windows automatically. Consider disabling this functionality if not required, following the principle of least privelege.
Likelihood: LOW
Confidence: HIGH
CWE:
- CWE-272: Least Privilege Violation
Likelihood: LOW
Confidence: HIGH
CWE:
- CWE-272: Least Privilege Violation