2018-06-11 21:00:00
mozilla
PUBLISHED
Content Security Policy combined with HTTP to HTTPS redirection can be used by malicious server to verify whether a known site is within a users browser history. This vulnerability affects Firefox < 50.