Nmap Development mailing list archives

Previous By Date Next
Previous By Thread Next

Re: New script : http-open-redirect

From: Patrik Karlsson <patrik () cqure net>
Date: Sun, 18 Dec 2011 14:00:18 +0100
On Sat, Dec 17, 2011 at 8:55 PM, Martin Holst Swende <martin () swende se>wrote:


Hi all,

Here's another script that came out of toying with the spider. It checks
for the precense of open/unvalidated redirects.
More info about the vulnerability can be found here:

https://www.owasp.org/index.php/Top_10_2010-A10-Unvalidated_Redirects_and_Forwards

Cheers,
/Martin



Great work Martin! I tested the script against a vulnerable web site and
got just the result I was expecting.
I've committed the script as r27509.

Cheers,
Patrik
-- 
Patrik Karlsson
http://www.cqure.net
http://twitter.com/nevdull77
_______________________________________________
Sent through the nmap-dev mailing list
http://cgi.insecure.org/mailman/listinfo/nmap-dev
Archived at http://seclists.org/nmap-dev/
Previous By Date Next
Previous By Thread Next

Current thread: