OPEN REDIRECT VULNERABILITIES: ESCALATING TO XSS

INTRODUCTION

A lot of bug bounty hunters usually just reports the vulnerability that they found directly to the program without understanding the impact of it. Although this is completely fine, but sometimes it restricts you to get the bounty you deserve. For example, If you have identified open redirect vulnerabilities in a web application and you report it directly then you will get around a minimum of $100. That’s great, but what if i told you that you can get 5 times more bounty of the same vulnerability? Well, it can actually happen if you know the impact. If you have found open redirection vulnerability in OAuth functionality then you may even get around $1000! Therefore, it is very important for bug hunters to identify the impact of vulnerabilities that they have found. To increase the impact of any vulnerability, Escalation plays an important role. For example, open redirect vulnerabilities escalated to cross site scripting can give you much more bounty compared to open redirection alone.

WHAT IS OPEN REDIRECT VULNERABILITIES?

open redirect vulnerabilities example

HOW TO ESCALATE OPEN REDIRECT TO XSS?

To escalate open redirection into cross site scripting, follow these simple steps:

Video Demonstration of Open Redirect Vulnerabilities:

Open Redirection Vulnerability Escalation on Live Website

CONCLUSION

I hope you understood how to escalate open redirection into cross site scripting vulnerability. Please note that the method described above may not work in certain web application that are more secure. In that case, you have to identify where you have found open redirection. If there is open redirection vulnerability in login functionality then you may not get that much bounty but if you have identified the same on some Oauth functionality where you can steal sensitive tokens of authentication then your bounty will automatically get increased.

OPEN REDIRECTION TO XSS REPORTS

Report 1

COURSES RELATED TO CYBERSECURITY

Learn Hacking Windows With Python From Scratch(2022)

--

--

Get the Medium app

A button that says 'Download on the App Store', and if clicked it will lead you to the iOS App store
A button that says 'Get it on, Google Play', and if clicked it will lead you to the Google Play store
Faiyaz Ahmad

Faiyaz Ahmad

Student | Cybersecurity L0V3R | BUG BOUNTY HUNTER | CTF PLAYER | INDIAN