alexanderhook27
@alexanderhook27
Active Member
Topics: 1 / Replies: 4
Reply
RE: Vulnerability Report : [Cross Domain Referer Leakage] Password Reset Token Leaking to Third party Sites.

Hi team please update me regarding Bug? And please confirm me, is there any reward I have submitted bug?

3 years ago
Forum
Reply
RE: Vulnerability Report : [Cross Domain Referer Leakage] Password Reset Token Leaking to Third party Sites.

@robert this means host of your website is different .as see in screenshot www.googleapis.com will hosted your website. and your referal link will...

3 years ago
Forum
Reply
RE: Vulnerability Report : [Cross Domain Referer Leakage] Password Reset Token Leaking to Third party Sites.

@martin If your website will hosted other source . so it will stolen the referral links easily, there is no need to reset password link option requ...

3 years ago
Forum
Reply
RE: Vulnerability Report : [Cross Domain Referer Leakage] Password Reset Token Leaking to Third party Sites.

Hi @martin, Through Burp Suite I will check the Host as in the screenshot your host is different. If I request a new token either it is reset token ...

3 years ago
Forum