src attribute of an HTML frame can be controlled by an attacker and website visitors may be redirected to malicious websites that are used for phishing attacks.

• CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:N/A:N