[Bug]There is a url jump vulnerability in the login place.

Because the parameters are not filtered, a URL jump vulnerability is created, which may cause users to be attacked by phishing.

![图片](https://user-images.githubusercontent.com/53037263/61962046-48877600-affb-11e9-9b5c-9cbdd6dbdf57.png)

Demonstrate the attack process
![11111111](https://user-images.githubusercontent.com/53037263/61962238-addb6700-affb-11e9-8962-7f3540cd5b0e.gif)

We can clearly see that it jumped to the phishing website http://127.0.0.1

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

[Bug]There is a url jump vulnerability in the login place. #15

Metadata

Assignees

Labels

Type

Projects

Milestone

Relationships

Development

[Bug]There is a url jump vulnerability in the login place. #15

Description

Metadata

Metadata

Assignees

Labels

Type

Projects

Milestone

Relationships

Development

Issue actions