"Hubspot Unvalidated Redirects / Open Redirect Vulnerability on app.getsidekick.com"
Hi Hubspot,
Here is Shaifullah Shaon (Black_EyE), An Ethical Hacker.
a white hat cyber security researcher from Bangladesh reporting a serious
[3'rd ranking in OWASP] security vulnerability on your system.
I faced a technical security bug called Unvalidated_Redirects/ Open Redirect Vulnerability on app.getsidekick.com.
Reference:
Unvalidated_Redirects/ Open Redirect Vulnerability: https://hackerone.com/reports/57163
Vuln Link:
https://app.getsidekick.com/insights?...
https://app.getsidekick.com/insights?...
Let's follow me,
1. Open Vuln Link in browser.
2. Change url to any site.
3. And as you see I can redirect to any site.
I hope you Understand my point.
Please See my Video Poc for understand clearly. Hopefully Those are Very critical issue.
Resolve those issue as soon as possible.
Here is proof as video concept: • "Hubspot Unvalidated Redirects / Open... (Unlisted)
Thank you
Shaifullah Shaon (Black_EyE)
[email protected]
Смотрите видео "Hubspot Unvalidated Redirects / Open Redirect Vulnerability on app.getsidekick.com" онлайн без регистрации, длительностью часов минут секунд в хорошем качестве. Это видео добавил пользователь Hacking Tips, Tricks & Exploit 24 Май 2017, не забудьте поделиться им ссылкой с друзьями и знакомыми, на нашем сайте его посмотрели 15 раз и оно понравилось людям.