Clickjacking

An attack that tricks a user into clicking on an invisible or disguised element on a web page, triggering an unintended action. Clickjacking uses transparent overlapping iframes to deceive users. Protection relies on the X-Frame-Options header and the frame-ancestors CSP directive.