CVE-2009-3018
CVE-2009-3018 (Maxthon Browser 3.0.0.145 Alpha in Ultramode) is described in the initial record as an XSS flaw where javascript: and data: URIs are not properly blocked in Refresh headers, and where data: URIs in Location headers or javascript: data URIs in HTML links on 301/302 error documents c...