Hi Hunters Welcome Back, My New Bug Bounty Write-up, in this post we share you, How I Found Hidden Open redirect Bug, By Changing Parameter values. we also share what is open redirect, and what impact this vulnerability on your website and products, so without any time waste lets reproduce.
Quick Intro What Is Open redirect bug
Open redirect vulnerability arise when an application incorporates, user controllable data into the target of a redirection an unsafe way an attacker can construct a URL within the application that causes a redirection to an arbitrary external domain. this behavior can be leveraged to facilitate phishing attacks against users of the application. the ability to use an authentic application URL, targeting the correct domain and with a valid SSL certificate lends credibility to the phishing attack because many users, even if they verify these features, will not notice the subsequent redirection to a different domain.
How To Find Open Redirect Vulnerability,
To Find the open redirect bug, you first have to look inside the URL to see if there is a parameter that is redirecting to another website, let me tell you some parameters, which is a sign of open redirect bug practices, like; /gotourl=, /redirect=, /URL=, etc.
Reproduce.
So to find this bug, first I saw a function on this website which was redirecting to me the login page URL after created account, so here gave me a chance to try open redirect bug,
Step.2- after registering the account redirected me to another page. this page was from his newsletter email, here I looked at the url, then the redirect url was hidden, and now it was very difficult because the redirect url was not showing us.
Step-3. after this I got realize why not change the value of the parameter, so what I actually did was the values parameter that was 1.I made that 2 as you can see in the image above. along with this, the goto= parameter was added to the another website url. as you can see in the image below.
Step-4. after creating the account, I noticed that the page which is there is not redirecting me on my website, but I did notice one thing. here, as I clicked on the Go to Login button, and "Boom" I Got redirect another website, and this is successfully open redirect vulnerability.
Impact open redirect Vulnerability
The open redirect vulnerability is considered a very low level bug. but the impact it has can be quite critical. because it affects the reputation of your website and products. which anyone can attacker redirect your users to any phishing link.
Conclusion
The conclusion is this post, what is open redirect vulnerability in real life. and how web security researchers find open redirect vulnerability on web application.
so hope you like this post and enjoy it. so thanks for reading my post and hope you help this post on your bug bounty journey.
and also we share my Youtube video where I have uploaded the This write-up POC, Happy Hunting.
0 Comments
Please do not enter any spam link in the comment box.