Mail.ru: CRLF injection mcs.mail.ru (leads to XSS)

Description: Я репортил уязвимость open redirect 335521 , которая позволяет украсть токены админа для входа. В redirecturi присутствует crlf инъекция. Даже если вы исправите репорт 335521 , то crlf injection всё равно будет существовать, потому что валидация url для редиректа не повлияет на эту...

mcs.mail.ru XSS vulnerability

Open Bug Bounty ID: OBB-597720 Description| Value ---|--- Affected Website:| mcs.mail.ru Open Bug Bounty Program:| Create your bounty program now. It's open and free. Vulnerable Application:| Custom Code Vulnerability Type:| XSS Cross Site Scripting / CWE-79 CVSSv3 Score:| 6.1...

Mail.ru: IDOR on mcs.mail.ru

CSRF tokens were static, CSRF token for arbitrary user's account can be obtained. No direct security implications were found, since token is transmitted in request headers and can not be sent crossite, but using static tokens was considered as a bad security practice. mcs.mail.ru was not in bug...