id: thinkific-redirect info: name: Open Redirect vulnerability on thinkific websites author: Gal Nagli severity: Medium requests: - method: GET path: - "{{BaseURL}}/api/sso/v2/sso/jwt?error_url=http://evil.com" matchers-condition: and matchers: - type: status status: - 302 - type: word words: - "