all InfoSec news logo
all InfoSec news - Your InfoSec news aggregator
Log in Sign up
all InfoSec news

Open Redirect Vulnerability: A Potential Threat to User Security

Add to bookmarks
March 31, 2023, 12:39 p.m. | ASWIN K V

System Weakness - Medium systemweakness.com

A Bug Bounty Report on the Risks of Unvalidated URL Redirections in Websites and Applications

Photo by Natalie Dmay on Unsplash

When a person is given power over a redirect or forward to another URL by an application, this is known as an open redirect vulnerability.

If the programme doesn’t check untrusted user input, a hacker may provide a URL that takes a gullible victim away from a trustworthy domain and onto a phishing website.

To give their phishing attempts …

bug bounty cybersecurity open redirect programming security threat user security vulnerability web

Visit resource

More from systemweakness.com / System Weakness - Medium

NESA Cybersecurity Standards of UAE — An Overview 3 days, 17 hours ago | systemweakness.com
authority called compliance critical +23
Analytics Write-Up 3 days, 17 hours ago | systemweakness.com
ctf-writeup hackthebox htb-writeup infosec +1
SSL certificate chain and how it’s verification works in browser (when misconfigured in server) but 3 days, 17 hours ago | systemweakness.com
ssl ssl-certificate-chain
Cybersecurity Insights: Adversarial Machine Learning Demystified 3 days, 17 hours ago | systemweakness.com
adversarial ai applications artificial intelligence +14
Best Open Source Software for Cybersecurity 3 days, 17 hours ago | systemweakness.com
analysis applications best of can +24
Boosting Website Security: Implementing SSL Termination on Your HAProxy Load Balancer. 5 days, 19 hours ago | systemweakness.com
encryption haproxy ssl certificate web development +1
THM: Gaining Access to the Library Server 5 days, 23 hours ago | systemweakness.com
thm-writeup
Setting Up a Local Kubernetes Cluster with Minikube and Deploying a Web Application 6 days, 16 hours ago | systemweakness.com
kubectl kubernetes minikube virtualbox +1
TestDisk in Linux and recover deleted files 6 days, 16 hours ago | systemweakness.com
data deleted-files-recovery linux recovery

Jobs in InfoSec / Cybersecurity

Post a job on infosec-jobs.com Find talent on infosec-jobs.com

SOC 2 Manager, Audit and Certification

@ Deloitte | US and CA Multiple Locations
View on infosec-jobs.com

Information Security Engineers

@ D. E. Shaw Research | New York City
View on infosec-jobs.com

Cloud Security Engineer

@ Pacific Gas and Electric Company | Oakland, CA, US, 94612
View on infosec-jobs.com

Penetration Tester (Level 2)

@ Verve Group | Pune, Mahārāshtra, India
View on infosec-jobs.com

Senior Security Operations Engineer (Azure)

@ Jamf | US Remote
View on infosec-jobs.com

(Junior) Cyber Security Consultant IAM (m/w/d)

@ Atos | Berlin, DE, D-13353
View on infosec-jobs.com
View more jobs