Content Security Policy combined with HTTP to HTTPS redirection can be used by malicious server to verify whether a known site is within a users browser history. This vulnerability affects Firefox < 50.
Name | Vendor | Start Version | End Version |
---|---|---|---|
Firefox | Mozilla | * | 50.0 (excluding) |