Burp Suite User Forum

Create new post

Open Redirection.

Andrew | Last updated: Nov 14, 2015 12:49PM UTC

Even though you have shown complete disregard for my feature requests, and tell me to "write my own" (we're not all coders, ya know? And I'm not requesting dumb $h!t like a button), I'm surprised you missed such a simple, glaring vulnerability .... especially since under "Scanner", IT'S ONE OF THE THINGS FOR WHICH YOU TEST. Your competitor didn't miss it though: https://www.reloadit.com/Verification/VerifyDevice?url=http://r87.com/?

PortSwigger Agent | Last updated: Nov 16, 2015 10:00AM UTC

Thank you for your comments. The site you have linked to is currently unavailable. If you can provide details of the vulnerability in question, including the response that you received from the redirect URL, that would help us to investigate the issue.

You must be an existing, logged-in customer to reply to a thread. Please email us for additional support.