Target=”_blank”

medium.com

The page we’re linking to gains partial access to the source page via the window.opener object. The newly opened tab can then change the window.opener.location to some phishing page.