Discussions
Stay up-to-date with the latest news from NetSuite. You’ll be in the know about how to connect with peers and take your business to new heights at our virtual, in-person, on demand events, and much more.
New AI Community Guidelines. Please review and follow them to ensure AI use stays safe, accurate, and compliant.
Invisible IFrames are considered malicious
It looks like NS inserts an invisible iframe within NS hosted content:
<iframe src='/empty.html' id='server_commands' style='visibility:hidden' height=0></iframe>
I believe I understand what NS's intentions are by the ID they give the iframe. Perhaps someone at NS can explain what it's for?
However, with this hidden iframe, our site is considered to be "RISKY" since invisible iframes can be used to launch malicious exploits. Which we are definitely not doing!
Customers using SiteAdvisor or LinkScanner get a message like:
This page is risky. It is likely to be one step away from an exploitive site/page. There may be a link on the page that is exploitive, or another form of threat that is only a click away from this page. Or it may be a form of social engineering such as phishing. We recommend avoiding this page.
0