When browsing a document hosted on an IP address, an attacker could insert certain characters to flip domain and path information in the address bar.
When browsing a document hosted on an IP address, an attacker could insert certain characters to flip domain and path information in the address bar.
https://www.mozilla.org/en-US/security/advisories/mfsa2020-20/ https://bugzilla.mozilla.org/show_bug.cgi?id=1623888