Testing for client-side URL redirect
URL redirect attacks (open redirection) occur when applications allow untrusted user input where an attacker serves a user a hyperlink. This hyperlink then sends them to an external URL that’s different from the intended web page the user was attempting to access. In layman’s terms, it’s when an attacker sends a user from the current page to a new URL.
Getting ready
This lab requires a PortSwigger Academy account and ZAP to intercept requests and responses from the server to your browser.
How to do it...
In this recipe, the lab uses open authorization (OAuth) services to authenticate the fake social media account. You, the attacker, will exploit a misconfiguration in OAuth to steal authorization tokens linked to another user’s account to gain access and remove a user, Carlos:
- Navigate to the URL with the browser proxied to ZAP and log into the PortSwigger Academy website to launch the lab (https:/...