Blazor работает на WebAssembly.
Это такая потенциально опасная дыра, что просто жуть.
Например, исследование пару лет назад

Around half of the websites that use WebAssembly, a new web technology, use it for malicious purposes, according to academic research.
https://it.slashdot.org/story/20/01/08/1421216/half-of-the-websites-using-webassembly-use-it-for-malicious-purposes

И сразу сносятся всякие защитные ограничения.
Например,

Our Security Team discovered a new type of Auto-Redirect attack using WASM to run Javascript code which will eventually lead the user, without any interaction, to a non-desired landing page.
In one of our previous posts we discussed Sandboxing, why it was created and how it was supposed to be a safer way to run Iframes. Unfortunately, we’ve seen how attackers are able to easily bypass it by serving code in a cross-origin platform, and leverage the ability of code served in the same origin platform by navigating through Sandboxing.

https://www.geoedge.com/webassembly-a-new-attack-uncovered/

[b]bolded text[/b]	bolded text
[i]italicized text[/i]	italicized text
[u]underlined text[/u]	underlined text
[s]strikethrough text[/s]	~~strikethrough text~~
[url]http://example.org[/url]	http://example.org
[url=http://example.com]Example[/url]	Example
[quote]quoted text[/quote]	quoted text
[code]monospaced text[/code]	`monospaced text`
[sarcasm]reverse italicized text[/sarcasm]	sarcasm
[color=red]Red Text[/color]	Red Text
[color=#FF0000]Red Text[/color]	Red Text
[color=FF0000]Red Text[/color]	Red Text
[size=15]Large Text[/size]	Large Text
[img=https://www.kirdyk.club/images/Tip-Hat.gif]

А=A	Б=B	В=V	Г=G	Д=D	Е=E	Ё=JO	Ж=ZH	З=Z	И=I
Й=J	К=K	Л=L	М=M	Н=N	О=O	П=P	Р=R	С=S	Т=T
У=U	Ф=F	Х=H	Ц=C	Ч=CH	Ш=SH	Щ=XH	Ъ=##	Ы=Y	Ь=''
Э=W	Ю=JU	Я=JA
а=a	б=b	в=v	г=g	д=d	е=e	ё=jo	ж=zh	з=z	и=i
й=j	к=k	л=l	м=m	н=n	о=o	п=p	р=r	с=s	т=t
у=u	ф=f	х=h	ц=c	ч=ch	ш=sh	щ=xh	ъ=#	ы=y	ь='
э=w	ю=ju	я=ja

Re: Oqtane - новый web (client-server) framework на базе Blazor для .NET