summaryrefslogtreecommitdiffstats
path: root/extensions/UserProfile
diff options
context:
space:
mode:
authorDylan William Hardison <dylan@hardison.net>2018-03-20 15:06:20 +0100
committerDylan William Hardison <dylan@hardison.net>2018-03-20 15:06:20 +0100
commit40023c4a9f7d949f623b3b6fa90c9cbf5dfc2351 (patch)
tree8b712354b3cc527db6c498d11a50cdbbc2a42837 /extensions/UserProfile
parent4cd99a91ff6a92a5e10449463b12a312060d01ba (diff)
downloadbugzilla-40023c4a9f7d949f623b3b6fa90c9cbf5dfc2351.tar.gz
bugzilla-40023c4a9f7d949f623b3b6fa90c9cbf5dfc2351.tar.xz
Bug 1444008 - Form action injection in Bugzilla /user_profile (leads to XSS/single-factor credential leakage)
Diffstat (limited to 'extensions/UserProfile')
-rw-r--r--extensions/UserProfile/template/en/default/pages/user_profile.html.tmpl2
1 files changed, 1 insertions, 1 deletions
diff --git a/extensions/UserProfile/template/en/default/pages/user_profile.html.tmpl b/extensions/UserProfile/template/en/default/pages/user_profile.html.tmpl
index 27cb825ed..fd72091dc 100644
--- a/extensions/UserProfile/template/en/default/pages/user_profile.html.tmpl
+++ b/extensions/UserProfile/template/en/default/pages/user_profile.html.tmpl
@@ -27,7 +27,7 @@
<td>&nbsp;</td>
<th>Search</th>
<td colspan="2">
- <form action="user_profile">
+ <form action="[% urlbase %]user_profile">
[% INCLUDE global/userselect.html.tmpl
id => "login"
name => "login"