Open forward

Last revision (mm/dd/yy): //

Vulnerabilities Table of Contents

Description
An open forward is an application that takes a parameter and forwards a user to another part of the application without any validation or access control checks. This may allow an attacker to bypass access control checks, especially those enforced externally, such as by a web server.

Risk Factors
TBD

Examples
http://www.vulnerable.com?forward=/accounts?id=1010

Related Attacks

 * Attack 1
 * Attack 2

Related Vulnerabilities

 * Open redirect

Related Controls

 * Control 1
 * Control 2

Related Technical Impacts

 * Technical Impact 1
 * Technical Impact 2