rspec/rules/S7074/rationale.adoc

When this flag is disabled, it allows the application to load and execute content from any source, including potentially unsafe ones. 
This vulnerability can be exploited when a user interacts with untrusted web content, such as clicking on a malicious link or opening a compromised webpage. 
The attacker can then inject harmful scripts or code into the application, bypassing the usual security restrictions.
Create rule S7074: webSecurity should be enabled (#4302) * Add html to rule S7074 * Add html for S7074 --------- Co-authored-by: daniel-teuchert-sonarsource <daniel-teuchert-sonarsource@users.noreply.github.com> Co-authored-by: Daniel Teuchert <daniel.teuchert@sonarsource.com> 2024-09-19 16:03:28 +02:00			`When this flag is disabled, it allows the application to load and execute content from any source, including potentially unsafe ones.`
			`This vulnerability can be exploited when a user interacts with untrusted web content, such as clicking on a malicious link or opening a compromised webpage.`
			`The attacker can then inject harmful scripts or code into the application, bypassing the usual security restrictions.`