When using cross-site cookies, the "Not You?" link keeps appending the URI to the link every time you click on it.

27 Feb, 2009 05:32 PM

Scenario:

Use a cross-site cookie to log into a tender instance.
Click on the "Not You?" link on the top-right. Notice the link is like http://help.example.com/login?to=%2F
Click the "Not You?" link again and again. After a while, the link looks like http://help.example.com/login?to=%2Flogin%3Fto%3D%252Flogin%253Fto%253D%25252F

1 Posted by rick on 18 Mar, 2009 09:39 PM

Doh, that's awesome. We have a fix for that coming tonight.
- Edit
rick closed this discussion on 18 Mar, 2009 09:39 PM.

Discussions are closed to public comments.
If you need help with Tender please start a new discussion.

New Issue
Conversation Started
The discussion is closed

No more actions from Tender or the discussion starter are required.
Re-open the discussion Re-open the discussion

This discussion is private. Only you and Tender support staff can see and reply to it.

This discussion is public. Everyone can see and reply to it.

Keyboard shortcuts

?	Show this help
ESC	Blurs the current field

r	Focus the comment reply box
^ + ↩	Submit the comment

You can use Command ⌘ instead of Control ^ on Mac

	13 May, 2026 07:24 AM	Carving Up Fun: A Guide to Mastering Snow Rider 3D
	25 Apr, 2026 11:51 AM	How do geomembranes prevent leakage and protect soil and groundwater?
	21 Apr, 2026 05:34 AM	Qinux Aquoxis Pressure Washer Nozzle im Test: Reinigung leicht gemacht?
	17 Apr, 2026 02:40 AM	Dive into Store Management: A Fun Experience with Slope 2 (and Beyond!)
	05 Apr, 2026 05:04 AM	Download Video TikTok Without Watermark on Any Device Today

	Authentication
	How do I cancel my account?
	Using queues to organize your support
	Cancel my dating profile
	Changing Account Owner