Google.Com Open Redirect Zaafiyeti

Google.Com Open Redirect Zaafiyeti


Translator


200 görüntülenme | 22 saniye | 2019-10-28 | alicangonullu@yahoo.com



Summary: accounts.google.com Open Redirect

Steps to reproduce:
  

1. Open Site https://accounts.google.com/ServiceLogin?continue=https://appengine.google.com/_ah/conflogin?continue=https://2wuahqpr68gs.htmlsave.com/&service=ah
  2. Login or Automatic Login
  3. And wait

Browser/OS: Windows 10 / Chorme

Attack scenario:
Example :

Imagine a human being and a victim. We may use this vulnerability to steal session and cookie information.

Warnings shown:
open_redirect, appengine_open_redirect

Etiketler

Bu sitede çerez verileriniz sitemizin hizmet kalitesini arttırma amacıyla işlenmek istenmektedir.


© Copyright 2020 Ali Can Gönüllü | Yasal