Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Security issues Hostname spoofing & Open Redirect #206

Closed
ready-research opened this issue Jul 22, 2021 · 12 comments · Fixed by #208
Closed

Security issues Hostname spoofing & Open Redirect #206

ready-research opened this issue Jul 22, 2021 · 12 comments · Fixed by #208

Comments

@ready-research
Copy link

@lpinca @3rd-Eden I have reported a security issue in huntr
https://www.huntr.dev/bounties/1625557993985-unshiftio/url-parse/
There are 2 attack scenarios possible for Open Redirect and Hostname Spoofing(Please take a look at the last comment)

Please validate and let us know your opinion on this. Thank you.
@lpinca
Copy link
Member

lpinca commented Jul 22, 2021

I logged in but I can't read the report.

@JamieSlome
Copy link

@zidingz - just attaching you here for your reference.

@zidingz
Copy link

zidingz commented Jul 22, 2021

Hey @lpinca You should be able to have access to the report now. Let me know if issues persist ❤️

@lpinca
Copy link
Member

lpinca commented Jul 22, 2021

Yes, it works now. Thanks. I've also pinged Arnout (@3rd-Eden) on Twitter.

@akazemier-godaddy
Copy link

akazemier-godaddy commented Jul 22, 2021
edited
Loading

I don't have access to the report either, but seems the same issue as reported previously on H1 about slash escaping. See SECURITY.md for ref.

@3rd-Eden
Copy link
Member

FML, that was my work account 😂 ANYWAYS, I can't access it on this account 😂

@ready-research
Copy link
Author

ready-research commented Jul 22, 2021
edited
Loading

@zidingz can you please help on this one.
@3rd-Eden 2nd issue hostname spoofing is completely different from that H1 report. And 1st one too

@zidingz
Copy link

zidingz commented Jul 22, 2021

@3rd-Eden You should also have access now!

@lpinca
Copy link
Member

lpinca commented Jul 22, 2021

@zidingz now I can no longer read the report :) Can we both have access or is it limited to only one maintainer?

@3rd-Eden
Copy link
Member

I still can't access it either.

@zidingz
Copy link

zidingz commented Jul 22, 2021

@lpinca @3rd-Eden Apologies, fixed now!

Let me know if either of you still can't view. Will be on call here until you're all set.

@3rd-Eden
Copy link
Member

✅ Access is working here.

@3rd-Eden 3rd-Eden mentioned this issue Jul 23, 2021
Closed
lpinca added a commit that referenced this issue Jul 23, 2021
@lpinca
[fix] Ignore the slashes after the protocol for special URLs
04db85c 
Fixes #205
Fixes #206
@lpinca lpinca mentioned this issue Jul 23, 2021
Merged
lpinca added a commit that referenced this issue Jul 23, 2021
@lpinca
[fix] Ignore slashes after the protocol for special URLs
320a8dc 
Fixes #205
Fixes #206
lpinca added a commit that referenced this issue Jul 24, 2021
@lpinca
[fix] Ignore slashes after the protocol for special URLs
81ab967 
Fixes #205
Fixes #206
@Abdul1110 Abdul1110 mentioned this issue May 12, 2022
Open
@Svetlana-github Svetlana-github mentioned this issue May 16, 2022
Open
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees
No one assigned
Labels
None yet
Projects
None yet
Milestone
No milestone
6 participants
@3rd-Eden @lpinca @zidingz @JamieSlome @akazemier-godaddy @ready-research