CVE-2006-0916

CVE-2006-0916 · HIGH Severity

AV:N/AC:L/AU:N/C:P/I:P/A:P

Bugzilla 2.19.3 through 2.20 does not properly handle "//" sequences in URLs when redirecting a user from the login form, which could cause it to generate a partial URL in a form action that causes the user's browser to send the form data to another domain.

Learn more about our User Device Pen Test.