Open Redirect in alanaktion/phproject

Valid

Reported on

Jan 28th 2022


Description

Open Redirect in Login page due to unchecked to parameter.

Proof of Concept

Send users the following link

https://demo.phproject.org/login?to=//example.com

After users use their registered account to login, they will be redirected to example.com

Impact

By modifying the URL value to a malicious site, an attacker may successfully launch a phishing scam and steal user credentials.

We are processing your report and will contact the alanaktion/phproject team within 24 hours. 4 months ago
We have contacted a member of the alanaktion/phproject team and are waiting to hear back 4 months ago
We have sent a follow up to the alanaktion/phproject team. We will try again in 7 days. 4 months ago
We have sent a second follow up to the alanaktion/phproject team. We will try again in 10 days. 3 months ago
We have sent a third and final follow up to the alanaktion/phproject team. This report is now considered stale. 3 months ago
Alan Hardman validated this vulnerability 2 months ago
KhanhCM has been awarded the disclosure bounty
The fix bounty is now up for grabs
Alan Hardman confirmed that a fix has been merged on c9c95f 2 months ago
The fix bounty has been dropped
index.php#L47-L65 has been validated
index.php#L92-L99 has been validated
to join this conversation