Google Chrome prior to 11.0.696.57 allows user-assisted remote malicious users to spoof the URL bar via vectors involving a redirect and a manual reload.
google chrome