Cloudflare: Clickjacking : https://partners.cloudflare.com/

2015-12-21T21:19:55
ID H1:106362
Type hackerone
Reporter xsserboiii
Modified 2016-03-06T18:06:09

Description

Hey, The title of submission defines the issue very clearly which is clickjacking at https://partners.cloudflare.com/ this subdomain missing x frame headers. As this subdomain contain a partner login then it is dangerous to have this type of issue. You understand better what i mean ;) Attached a screenshot kf mobilr showing framing that subdomain in local html file. I hope you will fix it soon. Thanks Harsh jaiswal