Back to directory
WRITEUP #1564

Bypassing SameSite=lax cookie restrictions to preform CSRF resulting to a horizontal privilege escalation via poor email verification mechanism

CSRF
by@deadoverflow_(Imad Husanovic)
Program
-
Published
Feb 13, 2023
Added to HackDex
Feb 22, 2023
Read Full Writeuphttps://medium.com/@deadoverflow/bypassing-samesite-lax-cookie-restrictions-to-preform-csrf-resulting-to-a-horizontal-privilege-1dfc8fb17b0a
RELATED WRITEUPS
Basic HTTP Authentication Risk: Uncovering pyspider Vulnerabilities
XSSReflected XSS
CSRF Bypass Using Domain Confusion Leads To ATO
CSRFAccount takeover
Vulnerabilities in Homepage Dashboard
RCESSRF
AI Under Siege: Discovering and Exploiting Vulnerabilities
AI / LLMAI
How Almost Sacrificing a University Group Project led to a Microsoft Bug Bounty
XSSCSRF

Built with ❤️ by Shubham Rawat