๐ŸŸขCSRF

LogoGrammarly disclosed on HackerOne: Lack of CSRF header validation at...HackerOne
LogoLogitech disclosed on HackerOne: One Click Account takeover using...HackerOne
LogoU.S. Dept Of Defense disclosed on HackerOne: Account takeover...HackerOne
LogoReddit disclosed on HackerOne: CSRF (protection bypassed) to force...HackerOne
LogoQIWI disclosed on HackerOne: Account takeover just through csrf in...HackerOne
LogoGratipay disclosed on HackerOne: CSRF csrftoken in cookiesHackerOne
Logodrchrono disclosed on HackerOne: CSRF Add Album On onpatient.comHackerOne
LogoCoinbase disclosed on HackerOne: CSRF bug on password changeHackerOne
LogoSite Wide CSRF on GlassdoorWitCoat Security Blog
PreviousRequest Forgery (CSRF & SSRF)NextSSRF

Last updated