Instagram - Open Redirect Vulnerability - CXSecurity.com

QQ空间 新浪微博 微信 QQ facebook twitter
漏洞ID 1734573 漏洞类型
发布时间 2019-09-09 更新时间 2019-09-09
CVE编号 N/A CNNVD-ID N/A
漏洞平台 N/A CVSS评分 N/A
|漏洞来源
https://cxsecurity.com/issue/WLB-2019090061
|漏洞详情
漏洞细节尚未披露
|漏洞EXP
-----------------[ Gotleeeeeeek ]-----------------

[.] Instagram - Open Redirect Vulnerability
[.] Date: 08/09/2019
[.] Remote: Yes
[.] Risk: Med
[.] Author: Gurzil
[.] Contact: gurzil@t-online.de
[.] Tested on: Mozilla/5.0 (Windows NT 10.0; Win64; x64)
[.] Exploit : https://l.instagram.com/?u=[Open Redirect Vul]&e=ATNmQ90zIVHH2bhyiNN57ecxj5wspbOi6DVKRjfEm1XhaOcCEvrWZZBkAhFSO-dZFytOBNKI6muCFN-NYA

-----------------[ Gotleeeeeeek ]-----------------

| Description |

#What is Open Redirect Vulnerability?
Open redirect is a security flaw in an app or a web page that causes it to fail to properly authenticate URLs. 
When apps and web pages have requests for URLs, they are supposed to verify that those URLs are part of the intended page’s domain. Open redirect is a failure in that process that makes it possible for attackers to steer users to malicious third-party websites. Sites or apps that fail to authenticate URLs can become a vector for malicious redirects to convincing fake sites for identity theft or sites that install malware.
Normally, redirection is a technique for shifting users to a different web page than the URL they requested. Webmasters use redirection for valid reasons, such as dealing with resources that are no longer available or have been moved to a different location. Web users often encounter redirection when they visit the Web site of a company whose name has been changed or which has been acquired by another company.

-----------------[ Gotleeeeeeek ]-----------------

| Proof Of Concept |

when you put the website address in instagram account and save it , you can visit  profile and use inspect element to see the link of redirection.
this link have 2 parameters :
&e=[Its Unknown String but it must exist to redirect ! ]
?u=[your website address])
done ! you can change parameter "u=[your website address]" 


-----------------[ Gotleeeeeeek ]-----------------