ClickJacking on Debug
Unknown
Vulnerability Details
#Proof Of Concept:
Related Issue on report #225543
1. Navigate to https://debug.weblate.org
2. As you notice it is forbidden.
3. just vulnerable by clickjacking.
3. Now the user report to CIA to open.
4. Redirect to MaliciousSite.com
I uploaded the poc.html
Thanks,
Actions
View on HackerOneReport Stats
- Report ID: 225555
- State: Closed
- Substate: resolved
- Upvotes: 2