Back to directory
WRITEUP #725

OAuth 2.0 Redirect URI Validation Falls Short, Literally

OAuthPath confusionOpen redirectHTTP parameter pollutionAccount takeover
by@innotommy(Tommaso Innocenti)
Program
AtlassianMeta / FacebookGitHubMicrosoftYahoo! / Verizon MediaLinkedInSlackVKLINEAuthDigital (Naver)OKORCID
Published
Oct 18, 2023
Added to HackDex
Aug 6, 2024
Read Full Writeuphttps://innotommy.com/Wrong_redirect_uri_validation_in_OAuth-4.pdf
RELATED WRITEUPS
Stealing First Party Access Token of Facebook Users: Meta Bug Bounty
OAuthAccount takeover
Self XSS + Login CSRF + OAuth = Account Takeover
Auth BypassAccount takeover
Interesting Story of an Account Takeover Vulnerability
Auth BypassAccount takeover
Self-XSS to ATO via Site Features
XSSSelf-XSS
How I Got $250 For My Second Bug on HackerOne
OAuthSession expiration issue

Built with ❤️ by Shubham Rawat