harisahmed101

Remediation: The best way to defend clickjacking is to defend it from server side and there are two mechanisms for server-side clickjacking protection, which are X-Frame-Options and Content Security Policy....

@issa-tseng As You have not disabled iframes or did not set them on same-origins therefore attackers can use multiple transparent or opaque layers to trick a user into clicking on...

Is there any update regarding the reported issue and bounty reward for my responsible disclosure?