alyom.net Open Redirect vulnerability

2020-04-1808:27:00

myNickName

www.openbugbounty.org

JSON

Open Bug Bounty ID: OBB-1146260

Following coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has:

&nbsp&nbsp&nbsp&nbsp&nbsp&nbspa. verified the vulnerability and confirmed its existence;
&nbsp&nbsp&nbsp&nbsp&nbsp&nbspb. notified the website operator about its existence.

Affected Website:	alyom.net
Open Bug Bounty Program:	Create your bounty program now. It’s open and free.
Vulnerable Application:	Custom Code
Vulnerability Type:	Open Redirect / CWE-601
CVSSv3 Score:	3.4 [CVSS:3.0/AV:N/AC:H/PR:N/UI:R/S:C/C:N/I:L/A:N]
Disclosure Standard:	Coordinated Disclosure based on ISO 29147 guidelines
Discovered and Reported by:	myNickName
Remediation Guide:	OWASP Open Redirect Cheat Sheet
Export Vulnerability Data:	Bugzilla Vulnerability Data
JIRA Vulnerability Data [ Configuration ]
Mantis Vulnerability Data
Splunk Vulnerability Data
XML Vulnerability Data [ XSD ]

Vulnerable URL:

![](data:image/png;base64, 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)

Mirror: Click here to view the mirror

Coordinated Disclosure Timeline

Vulnerability Reported:	18 April, 2020 08:27 GMT
Vulnerability Verified:	18 April, 2020 08:38 GMT
Website Operator Notified:	18 April, 2020 08:38 GMT
a. Using the ISO 29147 guidelines
—	—
b. Using publicly available security contacts
c. Using Open Bug Bounty notification framework
d. Using security contacts provided by the researcher
Public Report Published
[without any technical details]:	18 April, 2020 08:38 GMT

JSON