Open redirection bypass in /www/admin/campaign-modify.php
Low
Vulnerability Details
### Description
- There is an open redirect on /www/admin/campaign-modify.php?return_url= {F713773}
- By using //// at the start of the link, you can bypass the open redirect filter.
- example: `/www/admin/campaign-modify.php?clientid=&campaignid=&returnurl=%2F%2F%2F%2Fhackerone.com`
## Impact
This vulnerability can be used for phishing attacks
Actions
View on HackerOneReport Stats
- Report ID: 794144
- State: Closed
- Substate: resolved
- Upvotes: 7