Back to directory
WRITEUP #5732

Improper CSRF token handling leads to site-wide CSRF issue, chained with clickjacking = woot! Multiple sites vulnerable

CSRFClickjacking
by@zseano(Zseano)
Program
-
Published
Oct 29, 2018
Added to HackDex
Sep 15, 2022
Read Full Writeuphttps://zseano.medium.com/site-wide-csrf-issue-chained-with-clickjacking-multiple-sites-vulnerable-6201abab0d3e
RELATED WRITEUPS
Basic HTTP Authentication Risk: Uncovering pyspider Vulnerabilities
XSSReflected XSS
CSRF Bypass Using Domain Confusion Leads To ATO
CSRFAccount takeover
Vulnerabilities in Homepage Dashboard
RCESSRF
AI Under Siege: Discovering and Exploiting Vulnerabilities
AI / LLMAI
Credential Disclosure in LastPass
OtherClickjacking

Built with ❤️ by Shubham Rawat