[JS2-1076] insecure redirector during login - ASF JIRA

XML

Word

Printable

JSON

Details

Type: Bug
Status: Closed
Priority: Major
Resolution: Fixed
Affects Version/s: None
Fix Version/s: 2.1.4, 2.2.1
Component/s: Security
Labels:
None
Environment:
all

Description

/jetspeed/login/redirector?token

token.getToken() added to redirector isn't encoded

Attachments

Activity

People

Assignee:: Ate Douma

Reporter:: radko keves

Votes:: 0 Vote for this issue

Watchers:: 0 Start watching this issue

Dates

Created:: 22/Oct/09 11:51

Updated:: 04/Oct/11 21:04

Resolved:: 01/Mar/10 16:41