The quick login feature in Slash Slashcode does not redirect the user to an alternate URL when the wrong password is provided, which makes it easier for remote web sites to guess the proper passwords by reading the username and password from the Referrer URL.
History

No history.

cve-icon MITRE

Status: PUBLISHED

Assigner: mitre

Published: 2005-03-28T05:00:00

Updated: 2024-08-08T03:34:55.577Z

Reserved: 2005-03-28T00:00:00

Link: CVE-2002-1647

cve-icon Vulnrichment

No data.

cve-icon NVD

Status : Modified

Published: 2002-12-31T05:00:00.000

Modified: 2024-11-20T23:41:47.920

Link: CVE-2002-1647

cve-icon Redhat

No data.