Safe Redirect Bypass
Low
Vulnerability Details
Hello Team,
**Summary:**
The url below bypasses the safe redirect and redirects directly to the malicious website.
`http://evil.org/%00`
The reason for this may be the fix in the report #921286.
**Steps:**
Tweet the url below:
`http://evil.org/%00`
Thanks!
@cyanpiny
## Impact
The attacker can direct the victim directly, bypassing the safe redirect to the website.
Actions
View on HackerOneReport Stats
- Report ID: 945990
- State: Closed
- Substate: resolved
- Upvotes: 95