External URL page bypass

Disclosed: 2015-05-28 08:36:19 By danielchatfield To security

Unknown

Vulnerability Details

A specially crafted URL can bypass the external URL warning page. # Details A url that starts with two forward slashes is treated as absolute by browsers. The markdown renderer refuses to render links that start like this, however it can be tricked by using a control character e.g. "[test](/\x08/evil.com)"

Actions

View on HackerOne

Report Stats

Report ID: 63158
State: Closed
Substate: resolved
Upvotes: 3

External URL page bypass

Vulnerability Details

Actions

Report Stats

Share this report