back to article JavaScript-based address bar spoofing vulns patched in Safari, Yandex, Opera

Rapid7 found Apple’s Safari browser, as well as the Opera Mini and Yandex browsers, were vulnerable to JavaScript-based address bar spoofing. The infosec outfit, along with its “longtime mobile hacker friend Rafay Baloch,” discovered the software could be tricked into displaying the URL of one website while loading and …

  1. DS999 Silver badge


    Google is working towards eliminating the address bar from Chrome entirely, so instead of not having the info on sites that spoof the address bar you won't have the info anywhere!

    1. DoctorNine

      Re: Meanwhile

      Something something 'ease of use', mumble mumble 'security patch'. Something something else 'sod the user'... Oh sorry. Ignore that last bit. The end user is ABSOLUTELY paramount. We promise. Really.

  2. This post has been deleted by its author

    1. Anonymous Coward
      Anonymous Coward

      Re: Flash for Web is almost dead...

      Yes, I think we all should go back to an iron and sulfur based metabolism. Oxygen is way too reactive. Those radicals have got to go!

    2. martynhare

      Re: Flash for Web is almost dead...

      As in moving on to WebAssembly, WebGL, WebUSB... etc? In the year 2030, maybe every website can look like Runescape and we can call it Web 3.0

      1. Silver badge

        Re: Flash for Web is almost dead...

        Google is proud to present WebDildo, compatible with the most popular stress relief toys and dilators on the market today!

        1. Anonymous Coward
          Anonymous Coward


          Get Your App Immediately !!

    3. sabroni Silver badge

      Re: HTML5 is frankly quite disappointing

      What specifically were you looking for?

    4. Anonymous Coward
      Anonymous Coward

      Re: Flash for Web is almost dead...

      Isn't Javascript the most popular language in the Job adverts these days? (yes there are some vacancies but they just pay peanuts)

      Good luck in getting Javascript to die off any time this decade.

      1. Blackjack Silver badge

        Re: Flash for Web is almost dead...

        Go a decade ago, back in 2010 and if you wanted to do web design you HAD TO learn Flash or at least fake it good enough.

        That's my point, Flash died because it was too unsafe, how long it will take Javascript to do the same?

POST COMMENT House rules

Not a member of The Register? Create a new account here.

  • Enter your comment

  • Add an icon

Anonymous cowards cannot choose their icon

Other stories you might like