info
discussion
exploit
solution
references
Ruby on Rails 'redirect_to()' HTTP Header Injection Vulnerability
Attackers may use common networking tools to exploit this issue. For some attacks, a vulnerable user may have to follow a malicious link.
Privacy Statement
Copyright 2010, SecurityFocus
