Homograph attack
Unknown
Vulnerability Details
Hello!
I would like to report that fix of report #29491 is incomplete. There is another way to reproduce homograph attack: <http:ebаy.com> or <http:/ebаy.com>
IDNs are displayed in unicode and there is no encoding into Punycode on external link warning page
Thanks!
\- Matvejs
Actions
View on HackerOneReport Stats
- Report ID: 58612
- State: Closed
- Substate: resolved
- Upvotes: 4