front-end icon indicating copy to clipboard operation
front-end copied to clipboard

Published 20 hours ago verified publisher icon microservices-demo

Security - Open Redirection

Open palemtnrider opened this issue 5 years ago • 0 comments

The website allows open redirection. If you enter a URL of https://socks.weave.works///google.com the application redirects the user to google.com.

This can be used in a phishing attack.

I believe it is tied to how we have configured express.

palemtnrider avatar Jun 28 '19 17:06 palemtnrider