Lucian Constantin: The issue was discovered by security researcher David Leo, who published a proof-of-concept exploit for it. Leo’s demonstration consists of a Web page hosted on his domain that, when opened in Safari, causes the browser to display dailymail.co.uk in the address bar. The ability to control the URL shown by the browser can, … Continue reading Safari URL-spoofing Bug