tag:blogger.com,1999:blog-8166728817383736132.post6446694991792293381..comments2023-04-14T06:45:16.936-07:00Comments on Andmp | A blog about infosec, bug hunting and more!: Xiaomi URL Address Bar spoofing w/ SSL vulnerability or, CVE-2019-10875 - Was it intentionally kept in the global versions by Xiaomi?Unknownnoreply@blogger.comBlogger2125tag:blogger.com,1999:blog-8166728817383736132.post-23854013579298846082019-04-05T09:44:15.810-07:002019-04-05T09:44:15.810-07:00"The vulnerability impacts millions of users ..."The vulnerability impacts millions of users globally yet the bounty offered as such was, $99 (for Mi Browser) and another $99 (for Mint Browser)."<br /><br />In all fairness, the most common reward around here is a customized FU followed by a keep your mouth shut "or else". Really puts into perspective those $99.Anonymousnoreply@blogger.comtag:blogger.com,1999:blog-8166728817383736132.post-29684912093840705322019-04-05T07:26:33.080-07:002019-04-05T07:26:33.080-07:00This problem persist in Mi browser (global) since ...This problem persist in Mi browser (global) since 2 year. that why i uninstalled this browser.Anonymousnoreply@blogger.com