https://www.khanacademy.org/login open-redirect

Disclosed: 2014-04-09 20:54:49 By smiegles To khanacademy

Unknown

Vulnerability Details

Hi, I found a bypass in the redirects : `https://www.khanacademy.org/login?continue=http://www.olivierbeg.nl` won't work. `https://www.khanacademy.org/login?continue=http:/www.olivierbeg.nl` will work :-) Best regards, Olivier Beg

Actions

View on HackerOne

Report Stats

Report ID: 6357
State: Closed
Substate: resolved
Upvotes: 3

https://www.khanacademy.org/login open-redirect

Vulnerability Details

Actions

Report Stats

Share this report