all InfoSec news
How I Was Able to Takeover User Accounts via CSRF on an E-Commerce Website
Feb. 10, 2023, 7:47 p.m. | Crisdeo Nuel Siahaan
InfoSec Write-ups - Medium infosecwriteups.com
Hi Folks!
In this article, We’ll talk about the topic of cross-site request forgery (CSRF) vulnerabilities and I’ll share my personal experience of successfully executing a one-click account takeover on an e-commerce website. This serves as a reminder of the critical role that proper security measures play in keeping our sensitive information safe.
So… What’s this CSRF thing?
Cross-Site Request Forgery (CSRF) is a type of security vulnerability that affects web applications. It happens when a malicious website is able …
accounts bug bounty bug-bounty-tips commerce csrf e-commerce hackerone infosec takeover website
More from infosecwriteups.com / InfoSec Write-ups - Medium
NTFS Filesystem: Alternate Data Stream (ADS)
2 days, 13 hours ago |
infosecwriteups.com
How I Hack Web Applications (Part 1)
2 days, 13 hours ago |
infosecwriteups.com
If You Want To Be A CISO Then Read This First …
2 days, 13 hours ago |
infosecwriteups.com
Jobs in InfoSec / Cybersecurity
SOC 2 Manager, Audit and Certification
@ Deloitte | US and CA Multiple Locations
Information Security Engineers
@ D. E. Shaw Research | New York City
Cyber Security Architect - SR
@ ERCOT | Taylor, TX
SOC Analyst
@ Wix | Tel Aviv, Israel
Associate Director, SIEM & Detection Engineering(remote)
@ Humana | Remote US
Senior DevSecOps Architect
@ Computacenter | Birmingham, GB, B37 7YS