SEOGeoAuditCheck Logo
Back to All Guides

Unsafe Cross-Origin Links

Checks for target="_blank" links without rel="noopener".

What is this check?

This check looks for links that open in a new tab (`target='_blank'`) but are missing the `rel='noopener'` attribute.

Why is it important?

When you link to another site with `target='_blank'`, the new page gains partial access to the original page through the `window.opener` object. A malicious page could potentially change the original page's location to a phishing site.

What is the impact?

It's a security vulnerability. The `rel='noopener'` attribute prevents this access and secures your page.

Example Implementation

<!-- Unsafe Link -->
<a href="https://example.com" target="_blank">Click Here</a>

<!-- Safe Link -->
<a href="https://example.com" target="_blank" rel="noopener noreferrer">Click Here</a>