Posted by Jing Wang on Nov 14

Google DoubleClick.net(Advertising) System URL Redirection Vulnerabilities
Can be Used by Spammers

Although Google does not include Open Redirect vulnerabilities in its bug
bounty program, its preventive measures against Open Redirect attacks have
been quite thorough and effective to date.

However, Google might have overlooked the security of its DoubleClick.net
<http://doubleclick.net/> ​advertising system. After some test, it is found…