Home page logo
/

nmap-dev logo Nmap Development mailing list archives

Re: New script : http-open-redirect
From: Patrik Karlsson <patrik () cqure net>
Date: Sun, 18 Dec 2011 14:00:18 +0100

On Sat, Dec 17, 2011 at 8:55 PM, Martin Holst Swende <martin () swende se>wrote:

Hi all,

Here's another script that came out of toying with the spider. It checks
for the precense of open/unvalidated redirects.
More info about the vulnerability can be found here:

https://www.owasp.org/index.php/Top_10_2010-A10-Unvalidated_Redirects_and_Forwards

Cheers,
/Martin


Great work Martin! I tested the script against a vulnerable web site and
got just the result I was expecting.
I've committed the script as r27509.

Cheers,
Patrik
-- 
Patrik Karlsson
http://www.cqure.net
http://twitter.com/nevdull77
_______________________________________________
Sent through the nmap-dev mailing list
http://cgi.insecure.org/mailman/listinfo/nmap-dev
Archived at http://seclists.org/nmap-dev/


  By Date           By Thread  

Current thread:
[ Nmap | Sec Tools | Mailing Lists | Site News | About/Contact | Advertising | Privacy ]
AlienVault