Broken Link on who-covid-19-mobile-app's Vulnerability Submission Form on Hackerone #2019
Labels
needs:triage
New issue that needs triage
resolved:stale
No recent activity on the issue or PR
source:public
Issues created by the public
Comments
jaimaakali
added
needs:triage
|
Original report : https://hackerone.com/reports/1239670 Reporter : @171217 |
|
This item has been automatically marked as stale because it has not had recent activity. It will be closed if no further activity occurs. Thank you for your contributions. |
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
Steps To Reproduce:
Visit https://hackerone.com/who-covid-19-mobile-app/reports/new?type=team&report_type=vulnerability
Click on Security Page.
After that, you'll be redirected to the 404 HackerOne page.
This will impersonate your security page and steal legitimate reports.
References:
https://edoverflow.com/2017/broken-link-hijacking
Similar report : https://hackerone.com/reports/1225299
POC video : recording-1624273892143.webm
@171217
Impact
New researchers can be further deceived if they click on the hijacked link.
A specific case might be for a malicious user to create a fake account on that broken redirection link and deceive researchers arriving on that link. For example, the attacker can ask the researcher to submit his report to him first and if he approves, then only he can submit it to your official page. In this way, it can cause huge damage to your company if a critical severity report is mis-directed to the attacker.
The text was updated successfully, but these errors were encountered: