Community
Participate
Working Groups
Hello sir.. I find the open redirect in your domain here is poc:- https://dev.eclipse.org/site_login/?takemeback=http://google.com just open the link and click on continue.. and you directly redirect to google.com
Is this a real vulnerability? Can it be used to hijack our site, steal cookies, or otherwise compromise user data or the site itself?
i am not sure about that.. but i get your user to .. my own harmful page.. even your not click on my site link here... user trust your domain.. as he/she trust your domain click on continue so i effect user.. it also bad image of your site in user view
Correct. There's no issue for us specifically, but our site is trusted, so someone could take advantage of the open redirect to redirect to an evil site that looks just like ours. I'll fix this, I'm already in the code.
so no hall of fame or no reward? nothing.. ?
hey,, it also cause xss. by this request https://dev.eclipse.org/site_login/?takemeback=http://javascript:alert(1); as this is some sort of store xss. when your click on continue javascript script execute in same tab.. that causes the xss. this is harmful.. thanks
We don't have a hall of fame, unfortunately. We promise to love you long time, though.
just send me simple certificate form your side.. on which my name and your sign.. that help me many ways.. i wanna show it to my boss
> on which my name and your sign.. Should I write your name "ScRiptalert1ScRipt img srcasd onerrorprompt1" or simply Mr. onerrorprompt1 ?
hey my name is Gurjant Singh Sadhra(hackerdesk)
and can you provide..me 2 certificates... for my partner we work hard to find issue,, his name is:- Mayank Kappor(hackerdesk)
Unfortunately, we don't have a hall of fame, and we don't provide certificates. However, once this bug is fixed, it will be visible to the entire world. Thanks for providing feedback.
please make a simple page.. and list all security researchers.. it is request..
Proposed fix is to scope only Foundation domains. https://git.eclipse.org/r/#/c/18095/
> please make a simple page.. and list all security researchers.. > it is request.. And a fair one. I've opened bug 421105 for this.
i am not able to understand last 2 messages// :/
This was pushed in. Thanks for the report.
Removing the Security group since this is fixed.
what and you tell me to start hall of fame when you start that?
and please remove useless post on this page. and make it simple and clean thanks
(In reply to Denis Roy from comment #13) > Proposed fix is to scope only Foundation domains. > > https://git.eclipse.org/r/#/c/18095/ I think the regexps would still allow for something like: http://www.eclipse.org.someevilsite.com/nasty.php
(In reply to Denis Roy from comment #20) > (In reply to Denis Roy from comment #13) > > Proposed fix is to scope only Foundation domains. > > > > https://git.eclipse.org/r/#/c/18095/ > > I think the regexps would still allow for something like: > > http://www.eclipse.org.someevilsite.com/nasty.php This currently also allows this: https://www.hack-eclipse.org
I committed a solution for the new site_login: https://git.eclipse.org/c/websites/dev.eclipse.org.git/commit/?id=4b570f9a0c1e4d5e737acdc4a60c975c3b201b7e I wrote a small test page to prove this concept: https://dev.eclipse.org/site_login_new/tests/validate.takemeback.php
Done. Closing this bug.
