I recently published two repos on my Github account. One is RFD Checker, which I did with my colleague Paulo Silva, where it scans for […]
Reflected File Download webinar
On 13th March I did a webinar for Checkmarx showing in around 30 minutes what is and how you can exploit the web vector Reflected […]
Google Finance Reflected File Download
Found this vulnerability when auditing other client. With this RFD you don’t need to create a page to force the download. The request for this Google […]
Bing Reflected File Download
When using Bing online translator I noticed a XHR request on my browser that caught my attention: [code lang=”html”]http://www.bing.com/translator/LandingPage/GetDefinition?oncomplete=jQuery111207287312552798539_1444907172498&market=en&word=test&_=1444907172499[/code] On which reflected on the screen: […]
Why some vendors ignore RFD attacks?
Since I published my Reflected File Download Cheat Sheet I’m getting lot’s of private messages and emails from security researchers and bounty hunters telling that […]
MailChimp Reflected File Download
When auditing a MailChimp client for Cobalt.io I noticed that this company suffers from a Reflected File Download vulnerability that could be exploited only by […]
Workable Reflected File Download
For those who don’t know Workable.com… Workable is affordable, usable hiring software. It replaces email and spreadsheets with an applicant tracking system that your team […]
SendGrid Reflected File Download
For those who don’t know who SendGrid is… SendGrid provides unmatched deliverability, scalability, and reliability. We deliver email on behalf of happy customers such as: […]
Reflected File Download Cheat Sheet
This article is focused on providing infosec people how to test and exploit a Reflected File Download vulnerability – discovered by Oren Hafif of Trustwave. […]
Shopify open to a RFD attack
Before Shopify having a bounty program on HackerOne I already sent [on 19 march] a security report about a Reflected Filename Download I found on […]