Open redirect

This vulnerability allows an attacker to redirect users to a malicious website. While the impact is generally low, it can become severe when combined with techniques such as stealing user tokens or cookies. To prevent this attack, input should be properly sanitized before processing.

Example of a Vulnerable URL

https://domain/redirect.php?uri=https://webhook.site/endpoint

Webhook Testing: Useful for capturing and testing payloads during exploitation

PreviousSSRF (Server-Side Request Forgery)NextFile include

Last updated 7 months ago