From e3542837f93951df27d033d962370ea30b8bc910 Mon Sep 17 00:00:00 2001
From: NDevTK <31563761+NDevTK@users.noreply.github.com>
Date: Wed, 1 May 2024 17:21:48 +0100
Subject: [PATCH] Update navigations.md

---
 content/docs/attacks/navigations.md | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/content/docs/attacks/navigations.md b/content/docs/attacks/navigations.md
index b53b2d7af..eff7d371d 100644
--- a/content/docs/attacks/navigations.md
+++ b/content/docs/attacks/navigations.md
@@ -73,7 +73,7 @@ This attack works regardless of any [Framing Protections]({{< ref "xfo" >}}), be
 
 ### Download Navigation (without iframes)
 
-A variation of the technique presented in the previous section can also be effectively tested using `window` objects:
+A variation of the technique presented in the previous section can also be effectively tested using `window` objects, this also uses a sandboxed iframe to prevent a visable file download:
 
 ```javascript
 // Set the destination URL