Open Redirection

Sajid_Ali · September 18, 2018, 7:33am

Hello all,
Plz help me in clearing my concept over Open Redirection .
By signing in page was redirecting to it’s main domain , I tried subdomains and found thatt it has white listed any thing with *.domain.com e.g google.domain.com will redirect to it, but when i redirect to google.com it was giving 404 not found error.
Is it possible to make website anything.domain.com for stealing tokens?

stefanofinding · September 26, 2018, 5:20pm

Hi Sajid_Ali,

were you able to make the application redirect to google.com? Which applications gave you 404 error, google or the application you were testing?
For stealing tokens you need an application that sends the token in the URL, and if the redirection is only to *.domain.com you need a vulnerable subdomain that you can inject Javascript or control it.

Best.

Topic		Replies	Views
Open Redirects - Ups and Downs Starter Zone	1	3377	August 25, 2016
Redirect url help? Starter Zone	3	2574	April 11, 2019
Invalid URL , subdomain takeover? Web Hacking	1	2658	September 5, 2018
Cloudfront Subdomain Takeover Didn't work anymore? Web Hacking	2	3704	January 9, 2019
Possible Access Control Bug? Web Hacking	6	1672	October 26, 2019

Open Redirection

Related Topics