Open Redirection Due To MisConfigured Oauth – Bug Bounty Poc
This post is published by Bugdiscloseguy as a contributor on Bug Bounty POC .Note that the post is written by Bugdiscloseguy & any mistake in writing will be entertained only from him We allow anyone to write contents on our blog as a guest/contributor so other can also learn.If you’re interested in sharing your finding through Bug Bounty POC Platform just sign up on blog and you can post freely.
Hey There Bugdisclose Here
So While I Was Getting Some Attention Towards A Good Bounty Programme Which Revelup Was Hosting.
I Found A Sub-Domain ♡ Which Was Used To Manange The Functionality Of Google Oauth i.e https://googleauth-redirect.revelup.com
When I Allow The Access To Google It Redirected Me To Something Like This
So Quickly I Tried To Change The Value Of The Parameter (State) And Voila It Redirected Me.
And I Really Wanna Appreciate The Service You Guys Are Giving For Everyone.
I really appreciate that.
THANKS FOR READING