In Previous Post i already disclosed an open url redirection bug in Astro’s official website . So today, I decided to take a look again in another Astro sub domain and guess what?Another open redirection bug at login.astro.com.my
The only thing that made me feel frustrated is they didn’t notify me or even say Thank you to me for reporting that bug.
At least, say THANK YOU. Lmaoo.
Enough talk ..Let’s reproduce this bug
‘returnurl’ as there’s no filter in the source code which allow external redirection.
(This will redirect to my Facebook)
NOTE: Notice that I use URL shortener because if I don’t use it,at the end point of URL there will be random generated hash created by Astro as they think I’ll be redirected into their site.
Example random hash:
Although they didn’t give me any credit for disclosing this bug. I hope they take this bug report as a serious issue because a simple URL redirection can led to a serious problem.
An attacker/scammerr can easily redirect Astro users to scam page to steal their private info.That’s all for now.