Home page logo

fulldisclosure logo Full Disclosure mailing list archives

Facebook Open URL Redirection Vulnerability 2013
From: Arul Kumar <arul.xtronix () gmail com>
Date: Mon, 17 Jun 2013 12:53:20 +0530

[#] Title           :  Facebook Open URL Redirection Vulnerability 2013
[#] Status        :  Unfixed
[#] Severity     :  High
[#] Works on  :  Any browser with any version
[#] Homepage  : www.facebook.com
[#] Author       :  Arul Kumar.V
[#] Email          :  arul.xtronix () gmail com

I have found Open URL Redirection Vulnerabilities in facebook's
dialogs such as"Option Dialog","Friends Dialog","OAuth Dialog".This
Vulnerability is exploitable to all users who are signed into

Impact of Vulnerability:
1. The user may be redirected to an untrusted page that contains
malware which may then compromise the user's machine.

2. The user may be subjected to phishing attacks by being redirected
to an untrusted page.

3. This bug can be applicable to any user who are signed in which
works at any browsers with any version.

Vulnerable Dialogs:
Option Dialog  :    (/dialog/optin)
OAuth Dialog   :  (/dialog/oauth)
Friends Dialog : (/dialog/friends)


If you need more details about this bug,Visit my blogspot.I have
explained in brief about this bug.

Proof Of Concept:

If any signed facebook user clicks any one of the following link,they
will be redirected into our desired pages.URL Shorteners can be used
to mask malicious links.

Note: You must be signed into a facebook account to redirect sites.

Vulnerable URL's:
Once again i am remembering you,you must be signed into an facebook
account to redirect sites

1)Using "next" Parameter:



2)Using "redirect_uri" Parameter:



3) Phising demo:

Thank You,
Arul Kumar.V

Full-Disclosure - We believe in it.
Charter: http://lists.grok.org.uk/full-disclosure-charter.html
Hosted and sponsored by Secunia - http://secunia.com/

  By Date           By Thread  

Current thread:
  • Facebook Open URL Redirection Vulnerability 2013 Arul Kumar (Jun 17)
[ Nmap | Sec Tools | Mailing Lists | Site News | About/Contact | Advertising | Privacy ]