open-redirect

Google Open URL Redirection Vulnerability which does the Social Engineering part too.

Twitter: @teh_h3ck Email: vag[d0t]mourikis[@]gmail.com Open URL Redirection definition, quoted by OWASP: "An open redirect is an application that takes a parameter and redirects a user to the parameter value without any validation. This vulnerability is used in phishing attacks to get users to visit malicious…

Facebook open-redirect vulnerability that does the social engineering job too.

Twitter: @teh_h3ck Email: vag[d0t]mourikis[@]gmail.com Update: Hours after the initial post, facebook patched the vulnerability. It seems that the impact is higher than expected? Prologue Open redirects are security bugs that can easilly be exploited. From OWASP: An open redirect is an application that takes a…