Y
Hacker News
new
|
ask
|
show
|
jobs
by
StavrosK
5169 days ago
The HTML anchor never reaches the server in the request, it's for local use only. Of course, malicious JS on the page can always send it anywhere.