Greetings, I have discovered an address bar spoofing vulnerability inside of Puffin Web browser which has user base of more than 10 million Google play and Mobo genie combined. (Just for android).
A detailed writeup and a video demonstration and POC is available here: http://www.rafayhackingarticles.net/2014/07/puffin-web-browser-address-bar-spoofing.html -- Warm Regards, Rafay Baloch http://rafayhackingarticles.net _______________________________________________ Sent through the Full Disclosure mailing list http://nmap.org/mailman/listinfo/fulldisclosure Web Archives & RSS: http://seclists.org/fulldisclosure/
