Firefox password manager form information leak

2006-11-23T00:00:00
ID SECURITYVULNS:VULN:6855
Type securityvulns
Reporter MOZILLA
Modified 2006-11-23T00:00:00

Description

Password manager doesn't check form destination. It makes it possible for attacker to retrieve saved paramters, including saved login/password if he can insert form into content of the site.