Bugtraq mailing list archives

Re: Facebook Url Redirection Vuln.

From: Jann Horn <jann+libev () thejh net>
Date: Thu, 11 Jul 2013 18:04:13 +0200

On Thu, Jul 11, 2013 at 04:35:21PM +0200, Anthony Dubuissez wrote:

Isn't it a MitM situation ? if you can intercept that value you can intercept more than a simple parameter no ?


If you're the target site of the original link, you just need to look at the referrer. Stupid referrers.

Attachment: signature.asc
Description: Digital signature

Facebook Url Redirection Vuln. CANSIN YILDIRIM (Jul 11)
- Re: Facebook Url Redirection Vuln. Anthony Dubuissez (Jul 11)
  - Re: Facebook Url Redirection Vuln. Jann Horn (Jul 11)