2006-02-28 11:00:00
mitre
PUBLISHED
Bugzilla 2.19.3 through 2.20 does not properly handle "//" sequences in URLs when redirecting a user from the login form, which could cause it to generate a partial URL in a form action that causes the users browser to send the form data to another domain.