May 16, 2013 · Bug Bounty Open Redirect Dropbox

Dropbox Team Website Open Redirection

Dropbox Team Website Open Redirection

On 25th April, I discovered an unvalidated (open) redirection on Dropbox Team website from which they send emails to the Dropbox users.

VIDEO POC:

They have fixed this issue as of 17th May and offered me a 100GB Dropbox Pro account + T-Shirt + Mention on Special Thanks page.