According to the original reporter, the bug is still exploitable and that's why the issue on the bug tracker got hidden again.
> OH NO I JUST REALIZED THIS IS NOT ACTUALLY PROPERLY FIXED AND STILL WORKS
> even worse, edge no longer even makes the download menu pop up, so it's completely silent js rce that keeps running even after you close the browser !!
> all from just visiting a single website once !!
> issue set to private again, hopefully it'll get fixed properly this time :p
Think about it this way: Will the user "lose their place" on your page if they click a link and go back? Will the user lose any filtering or search options? If the answer is yes to either, open in a new tab. I personally make this determination all the time, especially on social media after I've scrolled a lot and don't want my "progress" to be lost.
Opening in a new tab has become some kind of standard UX. Regardless of that, for this kind of site it would be very useful for product spec comparison.
I think not forcing links to open in a new tab is the right call.
However, the point about losing one's place is a valid one, and I agree with the other commenter that said it would be good to encode the state in the URL to solve that.
An example for economic "region" would be the northwest county of Indiana which is the same time zone as Chicago, one state over in Illinois, while Indiana is otherwise one hour ahead.
You’re right. It’s the nature of things, being inclusive often means excluding an other.
On the other hand I’m glad we’ve all converted on one common reference for dates and don’t have one for each sphere of influence, cuz then something published in China vs Japan vs Taiwan vs Europe and the Americas vs Egypt vs… who knows what would be messy.
> I’m glad we’ve all converted on one common reference for dates
At least most places that use other calendars also keep track of the Western year in parallel.
My Thai wife was born 543 years after me, even though we were born in the same year. ("Hi, this is my wife, from the future!") Our wedding certificate contains only the Thai year. As I remember, for official purposes, Japan counts years of the current emperor's reign, along with an official name for each reign.
This suggests the range is much tighter than double, while also showing hospitality as the industry with the highest rate of unemployment. As of Sep 7.
I think "consumer" is being contrasted with a business contract offering static ip.
You should know because it is currently blocked - found by using mxtoolbox.com for example.
Or, suspect it will be because the ip to your residence is not a designated static ip. (In practice it may be ipv6 and never changes but applying a PTR to the ip requires assistance from the ISP and it would likely be outside of the contract.)
https://infosec.exchange/@rebane2001/116606719764376414