Commit
This commit does not belong to any branch on this repository, and may belong to a fork outside of the repository.
Fix URL redirection issue in login_page.php
The fix for issue #17648 failed to correct all cases of redirection. Alejo Popovici discovered that the regex checking for URLs pointing to other domains considered an URL with a single '/' as local, allowing redirection e.g. to http:/google.com on certain browsers. Fixes #17997 (CVE-2014-6316)
- Loading branch information