> Obviously the bugtraq moderators cannot see any issues with obfuscated URL's that look like http://www.ebay.com%252f%40evil.site.goes.here.
SF response aside, this is neither a vulnerability nor anything new. But congrats on learning URLs! _______________________________________________ Full-Disclosure - We believe in it. Charter: http://lists.netsys.com/full-disclosure-charter.html
