FirstBlood-#63 — Open redirect on logout
This report has been reviewed and accepted as a valid vulnerability on FirstBlood!
On 2021-05-09, 0xn00b reported:
?ref= parameter on /drpanel/logout endpoint is vulnerable to open redirect, normally if you try and go to
http://firstbloodhackers.com:<PORT>/drpanel/logout.php?ref=https://google.com/ you get redirected to an invalid page so i tried prepending
// to the redirect uri and finally i got a redirect to different origin.
This report has been publicly disclosed for everyone to view
FirstBlood ID: 1
Vulnerability Type: Open Redirect
There is an open url redirect vulnerability on /logout.php. The code expects it to start with / and does not allow to redirect to external domains but this can be bypassed.
Respect Earnt: 1000000
is an experimental cryptocurrency based on the Ethereum blockchain with the mission to show respect to those who deserve it. We are testing it out on our FirstBlood hackevent.