Skip to content
← Back to Glossary
Client-Side Security Checked by Vezraa

Clickjacking

An attack that tricks users into clicking invisible elements on a page.

Clickjacking involves embedding your site in a transparent iframe on an attacker's page. Users think they're clicking the attacker's UI but actually interact with your app. Prevent with X-Frame-Options: DENY or CSP frame-ancestors.

Related Terms

See this vulnerability in the database

See if your app is vulnerable

Vezraa checks for this security issues. Scan in 25 seconds.

Clickjacking — Security Glossary | Vezraa