Security researcher Mariusz Mlynski reported that the true value of window.location could be shadowed by user content through the use of the valueOf m…
First seen on http:
Jump to article: thehackernews.com/2012/10/firefox-1602-available-cross-site.html
