Uploaded image for project: 'MusicBrainz Server'
  1. MusicBrainz Server
  2. MBS-278

The return URI on the login page can serve as a potential phishing gateway/forwarder

    XMLWordPrintable

    Details

    • Type: Bug
    • Status: Closed
    • Priority: Low
    • Resolution: Fixed
    • Affects Version/s: NGS - Beta 3
    • Fix Version/s: NGS - Beta 3
    • Component/s: Misc features
    • Labels:
      None

      Description

      Upon visiting http://test.musicbrainz.org/, go to Editing > You must be logged-in to edit. On doing so, you'll notice the uri GET variable. This variable can currently point towards any given URI specified.

      This serves as a potential flaw, as someone being malicious could use it to forward on users and requests to various other spam/phishing/malware/crapware sites.

      Does this URL ever need to point to a URL outside of the current mb_server instance's scope? And if not, I suggest that this link be made relative to the given domain currently being logged in at, with any external site forwards being denied.

        Attachments

          Activity

            People

            Assignee:
            acid2 Oliver Charles
            Reporter:
            Anonymous Anonymous
            Votes:
            0 Vote for this issue
            Watchers:
            0 Start watching this issue

              Dates

              Created:
              Updated:
              Resolved:

                Packages

                Version Package
                NGS - Beta 3