RE: Find out whether a target website is vulnerable to Reverse Tabnabbing executing 7 lines of code

You are viewing a single comment's thread from:

RE: Find out whether a target website is vulnerable to Reverse Tabnabbing executing 7 lines of code

View the full context

marcocasario (54)in #security • 5 years ago

Well it seems like the new wallet link is subject to reverse tabnabbing then =]

Not a big concern though since if the wallet domain is compromised that's quite a bigger issue than being able to redirect steemit.com to a phishing page! =]

5 years ago in #security by marcocasario (54)

$0.00

1 vote

Sort:

Trending

[-]

gaottantacinque (59) 5 years ago (edited)

Yep but now they introduced the blog button on steemitwallet.com and it has the same vulnerability. If steemit.com gets compromised the attacker can steal the master key redirecting steemitwallet.com to a phishing page.
FYI @guiltyparties

$0.00

STEEM 0.18

TRX 0.15

JST 0.031

BTC 61083.24

ETH 2670.20

USDT 1.00

SBD 2.61

RE: Find out whether a target website is vulnerable to Reverse Tabnabbing executing 7 lines of code

Coin Marketplace