Open redirect while disconnecting authenticated account

Disclosed: 2017-06-08 16:43:46 By gsecure To weblate
Medium
Vulnerability Details
Hi team, there is a open redirect end point when any account owner disconnect authenticated accounts say google. He is redirected to some other domain. Vulnerable URL --- [demo.weblate.org/accounts/disconnect/google-oauth2/2335/?next=](demo.weblate.org/accounts/disconnect/google-oauth2/2335/?next=) POC 1. Go to authentication tab. 2. Disconnect Google account and capture the request. 3. Now, after next= write https://evil.com. 4. You are redirected to evil.com video POC is attached. Best Regards Gurwinder
Actions
View on HackerOne
Report Stats
  • Report ID: 224317
  • State: Closed
  • Substate: resolved
  • Upvotes: 5
Share this report