CVE-2006-0916
CVE-2006-0916 · HIGH Severity
AV:N/AC:L/AU:N/C:P/I:P/A:P
Bugzilla 2.19.3 through 2.20 does not properly handle "//" sequences in URLs when redirecting a user from the login form, which could cause it to generate a partial URL in a form action that causes the user's browser to send the form data to another domain.
Learn more about our User Device Pen Test.