From 40023c4a9f7d949f623b3b6fa90c9cbf5dfc2351 Mon Sep 17 00:00:00 2001
From: Dylan William Hardison <dylan@hardison.net>
Date: Tue, 20 Mar 2018 10:06:20 -0400
Subject: Bug 1444008 - Form action injection in Bugzilla /user_profile (leads
 to XSS/single-factor credential leakage)

---
 extensions/UserProfile/template/en/default/pages/user_profile.html.tmpl | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

(limited to 'extensions/UserProfile/template/en/default/pages/user_profile.html.tmpl')

diff --git a/extensions/UserProfile/template/en/default/pages/user_profile.html.tmpl b/extensions/UserProfile/template/en/default/pages/user_profile.html.tmpl
index 27cb825ed..fd72091dc 100644
--- a/extensions/UserProfile/template/en/default/pages/user_profile.html.tmpl
+++ b/extensions/UserProfile/template/en/default/pages/user_profile.html.tmpl
@@ -27,7 +27,7 @@
     <td>&nbsp;</td>
     <th>Search</th>
     <td colspan="2">
-      <form action="user_profile">
+      <form action="[% urlbase %]user_profile">
         [% INCLUDE global/userselect.html.tmpl
           id => "login"
           name => "login"
-- 
cgit v1.2.3-24-g4f1b