Medium Severity
Open redirect: MSN
Description
Message uses an MSN open redirect.
Sample (benign) redirect to sublimesecurity[.]com: https[:]//www[.]msn[.]com/en-gb/lifestyle/rf-best-products-uk/redirect?url=aHR0cHM6Ly93d3cuc3VibGltZXNlY3VyaXR5LmNvbQ==
References
Sublime Security
Created Aug 17th, 2023 • Last updated Aug 21st, 2023
Feed Source
Sublime Core Feed
Source
type.inbound
and any(body.links,
.href_url.domain.root_domain == "msn.com"
and .href_url.path =~ "/en-gb/lifestyle/rf-best-products-uk/redirect"
and strings.icontains(.href_url.query_params, "url")
)
Playground
Test against your own EMLs or sample data.