writeups.xyz / Airbnb – Chaining Third-Party Open Redirect into Server-Side Request Forgery (SSRF) via LivePerson Chat

Submitter : c2a

Date: 9 March 2017

Bounty : undisclosed

Vulnerabilities :

• Open Redirect
• SSRF
• Path Traversal

Programs :

• Airbnb

Authors :

• Brett Buerhaus (@Bbuerhaus)
• Ben Sadeghipour (@Nahamsec)

Link :
https://buer.haus/2017/03/09/airbnb-chaining-third-party-open-redirect-into-server-side-request-forgery-ssrf-via-liveperson-chat/