midori 0.5.8 available in 13.2 has this known problem: when it makes a "secure" connection to a web server with a self signed certificate, the connection is established and the user is not warned of the fact that he is connecting to an untrusted site. midori 0.5.11 instead ask for the user approval before establishing such untrusted connection. I would call this a security issue.