Skip to content

DEV Community

0xcrypto

Posted on Jun 17, 2021 • Originally published at hackberry.xyz on Jun 11, 2020

Open Redirect in Flattr

#hacking #bugsanderrors

Summary

This bug in Flattr was a low impact Open Redirect that allowed attacker to redirect the victim after authorizing Twitter.

PoC

https://flattr.com/settings/connect/twitter?redirect=https://hackberry.xyz

Timeline

Found vulnerability - 5th June, 2020
Made contact with Flattr - 5th June, 2020
Reported vulnerability - 9th June, 2020
Bug fixed - 11th June, 2020

Reference

https://cwe.mitre.org/data/definitions/601.html

Top comments (0)

Subscribe

Speedy emails, satisfied customers

Are delayed transactional emails costing you user satisfaction? Postmark delivers your emails almost instantly, keeping your customers happy and connected.

Read next

Sample Title

Diwakar kothari - Mar 8

Optimizing AWS EventBridge - Default vs. Custom Event Buses and Best Practices

John Ajera - Mar 7

How Can Module Testing Improve the Overall Quality Of Software Products?

Jordan Knightin - Mar 7

TS1325: Argument of dynamic import cannot be spread element

Turing - Mar 7

Security Researcher and a Software Consultant.

Joined

Jun 9, 2021

From Burnout to RCE: Getting out of the rat race

#bugsanderrors #hacking

Bypassing WAF in Misconfigured Wordpress

#bugsanderrors #wordpress #hacking #tips

Create up to 10 Postgres Databases on Neon's free plan.

If you're starting a new project, Neon has got your databases covered. No credit cards. No trials. No getting in your way.