Open Redirect in alanaktion/phproject

Valid

Reported on

Jan 28th 2022

Description

Open Redirect in Login page due to unchecked to parameter.

Proof of Concept

Send users the following link

https://demo.phproject.org/login?to=//example.com

After users use their registered account to login, they will be redirected to example.com

Impact

By modifying the URL value to a malicious site, an attacker may successfully launch a phishing scam and steal user credentials.

We are processing your report and will contact the alanaktion/phproject team within 24 hours. a year ago
We have contacted a member of the alanaktion/phproject team and are waiting to hear back a year ago
We have sent a follow up to the alanaktion/phproject team. We will try again in 7 days. a year ago
We have sent a second follow up to the alanaktion/phproject team. We will try again in 10 days. a year ago
We have sent a third and final follow up to the alanaktion/phproject team. This report is now considered stale. a year ago
Alan Hardman validated this vulnerability a year ago
KhanhCM has been awarded the disclosure bounty
The fix bounty is now up for grabs
Alan Hardman marked this as fixed in 1.7.13 with commit c9c95f a year ago
The fix bounty has been dropped
This vulnerability will not receive a CVE
index.php#L47-L65 has been validated
index.php#L92-L99 has been validated
to join this conversation