all InfoSec news logo
all InfoSec news - Your InfoSec news aggregator
Log in Sign up
all InfoSec news

CSRF Where Token is duplicated in Cookie | 2023

Add to bookmarks
Feb. 6, 2023, 7:26 a.m. | Karthikeyan Nagaraj

InfoSec Write-ups - Medium infosecwriteups.com

Portswigger Cross-Site Request Forgery Lab Simple Solution | Karthikeyan Nagaraj

CSRF — Introduction:

  • Cross-Site Request Forgery (CSRF) is a type of security vulnerability that affects web applications.
  • It occurs when an attacker tricks a user’s browser into sending a malicious request to a web application on behalf of the user, often without the user’s knowledge or consent.
  • The attacker takes advantage of the trust that a web application has in a user’s browser, exploiting the fact that the browser automatically …

bug bounty cookie csrf hacking portswigger token vulnerability

Visit resource

More from infosecwriteups.com / InfoSec Write-ups - Medium

Mastering Shodan Search Engine 3 hours ago | infosecwriteups.com
bug bounty bug-bounty-tips cybersecurity information security +1
Email Verification Bypass via Remember Me 3 hours ago | infosecwriteups.com
bug bounty cybersecurity hacking pentesting +1
Exploiting Symlinks: A Deep Dive into CVE-2024–28185 and CVE-2024–28189 of Judge0 Sandboxes 3 hours ago | infosecwriteups.com
attacks code code execution continue +15
Typo Trouble: Exploring the Telegram Python RCE Vulnerability 3 hours ago | infosecwriteups.com
address alerts application concept +25
Active DNS Recon using AXIOM 3 hours ago | infosecwriteups.com
bug bounty bug-bounty-tips cybersecurity infosec +1
Information Disclosure: Story of 500€ + 400$ Bounty 3 hours ago | infosecwriteups.com
bug bounty cybersecurity hacking information technology +1
Demystifying Password Cracking: Attacks and Defence Strategies 3 hours ago | infosecwriteups.com
cybersecurity ethical hacking hacking infosec +1
Race Condition and Broken Access Control on Developer Dashboard 3 hours ago | infosecwriteups.com
access access control broken access control can +24
Windows Fundamentals 1 | TryHackMe Walk-Through 3 hours ago | infosecwriteups.com
cybersecurity infosec security tryhackme +1

Jobs in InfoSec / Cybersecurity

Post a job on infosec-jobs.com Find talent on infosec-jobs.com

SOC 2 Manager, Audit and Certification

@ Deloitte | US and CA Multiple Locations
View on infosec-jobs.com

Werkstudent (w/m/d) - Cyber Security

@ IONOS | Karlsruhe, Germany
View on infosec-jobs.com

Security Operations Manager

@ BambooHR | Utah | Hybrid
View on infosec-jobs.com

Senior Risk and Compliance Analyst

@ Cricket.com | Hyderabad
View on infosec-jobs.com

Cyber Security Architect

@ Lilium | Munich
View on infosec-jobs.com

Senior Security Analyst

@ BETSOL | Bengaluru, India
View on infosec-jobs.com
View more jobs