.png)
1 week ago
22 BOOK THIS SPACE FOR AD
ARTICLE ADRecently,i found an interesting bug during my testing that allows the Open Redirection on login & Signup page. This issue without proper authorization in an Private HackerOne Program.
The Bug
Now that the deadline to fix this vulnerability has passed, I’ve decided to publish this blog post that covers a web vulnerability I’ve found in the login mechanism of a particular company.
Everything started when I had a look at a more complex part of a public web application of this vendor. The web application that gives out a link to the user that can be used to open up the same user state again at a later point. I’ve then opened this link from a private tab and examined the web requests in the Burp proxy.
1. One link looked particularly interesting, since it contains a redirect_uri parameter:
https://account.private.com/en/login?next=/openid/authorize?client_id=&redirect_uri=https://billing.private.com/internal/auth/oidc_callback&response_type=code&scope=openid+email+profile+social_profiles&state=[Base64]Parameters like that are often prone to open redirect vulnerabilities that allow attackers to redirect users to another site after they click on a…
Bengali (Bangladesh) · 
English (United States) ·