Security Advisory

CVE-2006-0916

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2006-02-28 11:00:00

Last updated 2024-08-07 16:56:14

Assigner mitre

State PUBLISHED

Description

Bugzilla 2.19.3 through 2.20 does not properly handle "//" sequences in URLs when redirecting a user from the login form, which could cause it to generate a partial URL in a form action that causes the users browser to send the form data to another domain.

← Browse all CVEs View on cve.org ↗