Facebook Old Generated URLs Still Vulnerable to Open Redirect Attacks & A New Open Redirect Web Security Bugs

Facebook Old Generated URLs Still Vulnerable to Open Redirect Attacks & A New Open Redirect Web Security Bugs Domain: http://www.facebook.com “Facebook is an online social networking service headquartered in Menlo Park, California. Its website was launched on February 4, 2004,… Continue Reading

Amazon Covert Redirect Bug Based on Kindle Daily Post, Omnivoracious, Car Lust

  Amazon Covert Redirect Bug Based on Kindle Daily Post, Omnivoracious, Car Lust – Amazon Covert Redirect Based on Kindle Daily Post, Omnivoracious, Car Lust & kindlepost.com omnivoracious.com carlustblog.com Open Redirect Web Security Vulnerabilities Domains: http://www.amazon.com “Amazon.com, Inc. (/ˈæməzɒn/ or… Continue Reading

Yahoo Yahoo.com Yahoo.co.jp Open Redirect (Unvalidated Redirects and Forwards) Web Security Bugs

  Yahoo Yahoo.com Yahoo.co.jp Open Redirect (Unvalidated Redirects and Forwards) Web Security Bugs   Though Yahoo lists open redirect vulnerability on its bug bounty program. However, it seems Yahoo do not take this vulnerability seriously at all.   Multiple Open… Continue Reading

Google Covert Redirect Web Security Bugs Based on Googleads.g.doubleclick.net

  Bypass Google Open Redirect Filter Based on Googleads.g.doubleclick.net – Google Covert Redirect Vulnerability Based on Googleads.g.doubleclick.net       (1) WebSite: google.com   “Google is an American multinational technology company specializing in Internet-related services and products. These include online advertising technologies,… Continue Reading

Google DoubleClick.net(Advertising) System URL Redirection Vulnerabilities Can be Used by Spammers

  Google DoubleClick.net (Advertising) System URL Redirection Vulnerabilities Could Be Used by Spammers   Although Google does not include Open Redirect vulnerabilities in its bug bounty program, its preventive measures against Open Redirect attacks have been quite thorough and effective… Continue Reading

Paypal Online Website OAuth 2.0 Covert Redirect (OpenIDconnect) Web Security Bugs (Information Leakage & Open Redirect)

  Paypal Online Website OAuth 2.0 Covert Redirect (OpenIDconnect) Web Security Bugs (Information Leakage & Open Redirect) (1) Domain: paypal.com   “PayPal is an American worldwide online payments system. Online money transfers serve as electronic alternatives to traditional paper methods… Continue Reading

Amazon Website Covert Redirect Web Security Bugs Based on Facebook – Attack Simulation

  Amazon Website Covert Redirect Web Security Bugs Based on Facebook – Attack Simulation   Domain: http://www.amazon.com “Amazon.com, Inc. (/ˈæməzɒn/ or /ˈæməzən/) is an American electronic commerce company with headquarters in Seattle, Washington. It is the largest Internet-based retailer in… Continue Reading

eBay Covert Redirect Web Security Bugs Based on Googleads.g.doubleclick.net

  eBay Covert Redirect Vulnerability Based on Googleads.g.doubleclick.net   (1) WebSite: ebay.com “eBay Inc. (stylized as ebay, formerly eBay) is an American multinational corporation and e-commerce company, providing consumer to consumer & business to consumer sales services via Internet. It… Continue Reading

LinkedIn Online Service OAuth 2.0 Covert Redirect Web Security Bugs (Information Leakage & Open Redirect)

  LinkedIn Online Service OAuth 2.0 Covert Redirect Web Security Bugs (Information Leakage & Open Redirect) (1) Domain: linkedin.com   “LinkedIn /ˌlɪŋkt.ˈɪn/ is a business-oriented social networking service. Founded in December 2002 and launched on May 5, 2003, it is… Continue Reading

RenRen.com Online Website OAuth 2.0 Covert Redirect Web Security Bugs (Information Leakage & Open Redirect)

  RenRen.com Online Website OAuth 2.0 Covert Redirect Web Security Bugs (Information Leakage & Open Redirect) (1) Domain: renren.com   “The Renren Network (Chinese: 人人网; pinyin: Rénrénwǎng; literally: “Everyone’s Website”), formerly known as the Xiaonei Network (Chinese: 校内网; literally: “on-campus… Continue Reading