search

OWASP / QRLJacking

QRLJacking or Quick Response Code Login Jacking is a simple-but-nasty attack vector affecting all the applications that relays on “Login with QR code” feature as a secure way to login into accounts which aims for hijacking users session by attackers.
GNU General Public License v3.0
1.33k stars 617 forks source link

how to solve it #147

Closed kucinggemok closed 3 years ago

kucinggemok commented 3 years ago

Exception in thread QR updater thread:
Traceback (most recent call last):
File "/usr/local/lib/python3.7/threading.py", line 926, in _bootstrap_inner
self.run()
File "/usr/local/lib/python3.7/threading.py", line 870, in run
self._target(*self._args, **self._kwargs)
File "/home/kucinggemok/QRLJacking/QRLJacker/core/browser.py", line 133, in website_qr
controller = self.browsers[module_name]["Controller"]
KeyError: 'whatsapp'

Exception in thread Webserver manager thread:
Traceback (most recent call last):
File "/usr/local/lib/python3.7/threading.py", line 926, in _bootstrap_inner
self.run()
File "/usr/local/lib/python3.7/threading.py", line 870, in run
self._target(*self._args, **self._kwargs)
File "/home/kucinggemok/QRLJacking/QRLJacker/core/browser.py", line 167, in serve_module
self.browsers[module_name]["host"] = "http://"+host
KeyError: 'whatsapp'

Exception in thread Idle detector thread:
Traceback (most recent call last):
File "/usr/local/lib/python3.7/threading.py", line 926, in _bootstrap_inner
self.run()
File "/usr/local/lib/python3.7/threading.py", line 870, in run
self._target(*self._args, **self._kwargs)
File "/home/kucinggemok/QRLJacking/QRLJacker/core/browser.py", line 149, in check_img
controller = self.browsers[module_name]["Controller"]
KeyError: 'whatsapp'

melbadry9 commented 3 years ago

Please enable debug mode and provide more details about this issue.