or Create a profile

Home Questions

Overwrite redirect url

Jordy's Avatar

Jordy

10 Jun, 2015 11:14 AM

Hey,

In our project we have some urls going to a redirect script which will set a header location to the third parties site.
Now arachni does not follow the redirect which is nice. But neither it checks if the header we sent has any xss in it.

So lets say our setup is something like this:
Out

Out.php contains something like:
<?php
header('Location: ' . $_GET['out']); // Which is wrong off course but thats why we run arachni on it
?>

Now arachni seem to not check this request because it is going to a third party.
Can we somehow make sure that arachni does check the header (but still not following the redirect set in the header)

Hopefull i made the issue clear :)

Thanks in advance

  1. Support Staff 1 Posted by Tasos Laskos on 10 Jun, 2015 07:12 PM

    Tasos Laskos's Avatar

    Hello Jordy,

    That doesn't have an XSS, the unvalidated_redirect check should have caught it though. Did it not?

    Cheers

  2. 2 Posted by Jordy on 11 Jun, 2015 07:19 AM

    Jordy's Avatar

    Hey Tasos thanks for answering.

    Weird it seems like the header is not getting checked. I thought maybe because the redirect was pointing to an cross domain. And therefor the header does not get all the checks i hoped for.

    If you are sure then i have messed something up. I will try again.

    Cheers Tasos

  3. Support Staff 3 Posted by Tasos Laskos on 11 Jun, 2015 07:23 AM

    Tasos Laskos's Avatar

    It's not the header that needs to be checked but the url vector. If it's seen by the unvalidated_redirect check then it should have logged the issue.

    Of course, there could be about a thousand valid reasons that you're not experiencing the expected behavior, would you mind sending me the location of the page via e-mail at: [email blocked]

    Cheers

  4. 4 Posted by Jordy on 12 Jun, 2015 10:51 AM

    Jordy's Avatar

    Hey Tasos,

    I will do some more testing to make sure it goed like i think it goed.

    Let me get back to you on this a little later

    Cheers!

  5. Tasos Laskos closed this discussion on 30 Sep, 2015 02:56 PM.

Comments are currently closed for this discussion. You can start a new one.

  • New Issue

  • Conversation Started

  • The discussion is closed

    No more actions from Arachni or the discussion starter are required.

  • Re-open the discussion

Private Permissions

This discussion is private. Only you and Arachni support staff can see and reply to it.

Public Permissions

This discussion is public. Everyone can see and reply to it.

Keyboard shortcuts

Generic

? Show this help
ESC Blurs the current field

Comment Form

r Focus the comment reply box
^ + ↩ Submit the comment

You can use Command ⌘ instead of Control ^ on Mac

Recent Discussions

14 Jan, 2026 02:48 AM New Member Introduction – Happy to Join the Community
01 Dec, 2025 12:58 AM New Member Introduction – Happy to Join the Community
27 Sep, 2025 02:57 AM Best Deals with United Airlines Official Site
28 Jul, 2025 05:19 AM +971_568044699 )][(────୨( )Abortion pills in Ajman
14 Apr, 2025 04:47 PM REMOTE ACCESS

Recent Articles

Optimizing for faster scans
Service scanning
Software as a Service (Saas)