|Main Archive Page > Month Archives > oss-security archives|
----- "Steven M. Christey" <email@example.com> wrote:
> > As for the "linkbait" issue, I have no clue. Nothing in git seems to
> > point at that.
> > Steve, does MITRE have a precedent for such a thing?
> The vendor is calling it a "vulnerability" which is good enough to assign
> a CVE to, as a different vuln type than XSS.
> My guess is that it's open redirect, which is used to redirect users away
> from the site towards spam or malware. Just a guess, though.
Let's use CVE-2010-4266 then.