WSTG-CONF-12 should mention HTML base tag injection

[Loqova]

What would you like to happen? Testing the HTTP Content Security Policy (CSP) header is described in WSTG-CONF-12. But it doesn't mention to test for not using a base-uri. A webpage with CSP header without base-uri will be vulnerable to HTML base tag injection which could point all relative URL's (JavaScripts/Stylesheets) in the browser to an external domain.