Redbus.in suffers from an open redirection vulnerability.
5f80c3d3b59c788a6c571300287636cc82e5cab5cfb8a328bf2239b695f822c5 _______ ________________ __ _____________
_______ \ _ \ \ _ \______ \ | _/_ \______ \ __ _ __
\_ __ \/ /_\ \/ /_\ \ / / |/ /| | / / ______ \ \/ \/ /
| | \/\ \_/ \ \_/ \/ /| < | | / / /_____/ \ /
|__| \_____ /\_____ /____/ |__|_ \|___| /____/ \/\_/
\/ \/ \/
-------------------------------------------------------------------------------------------------------------------------------------------------
TITLE: REDBUS.IN URL REDIRECTION
vendor: redbus.in
Author: r007k17-w a.k.a Raghavendra Karthik.D
Email: n4gb07@gmail.com
My blog: http://shadowrootkit.wordpress.com/
Google Dork: © Pilani Soft Labs Pvt. Ltd.
---------------------------------------------------------------------------------------------------------------------------------------------------
DEMO: REDBUS is India's first,largest,favourite bus ticket booking
site.It got voted
by FORBES among the top 5 hottest start ups in India.
BUG URL:
redirection bug in 'redirectURL' parameter. 1.
https://www.redbus.in/SeatsNotAvailableRedirect.htm?redirectUrl=http://www.xssed.com
----------------------------------------------------------------------------------------------------------------------------------------------------------
gr33t1ngs to s1d3-3ff3cts,L0rd CrUs4d3r,3ps1lonl4mbd4,A1-w1n6( N17|<
),1nJ3ct0r t3am and all my friends
© 2024 Packet Storm. All rights reserved.
%7Cutmcsr%3D(direct)%7Cutmcmd%3D(none)){kind=small}
Follow us on Twitter
Follow us on Facebook
Subscribe to an RSS Feed