HackerOne Bug Bounty Disclosure: if-the-website-does-not-impose-additional-defense-against-csrf-attacks,-failing-to-use-the-‘lax’-or-‘strict’-values-could-increase-the-risk-of-exposurbyshubhangirathore836

November 30, 2022

Programme

HackerOne

  • Yelp



Yelp

Submitted by

  • shubhangirathore836



shubhangirathore836

Report

If the website does not impose additional defense against CSRF attacks, failing to use the ‘Lax’ or ‘Strict’ values could increase the risk of exposur

Full Report

A considerable amount of time and effort goes into maintaining this website, creating backend automation and creating new features and content for you to make actionable intelligence decisions. Everyone that supports the site helps enable new functionality.

If you like the site, please support us on Patreon using the button below

Digital Patreon Wordmark FieryCoralv2

To keep up to date follow us on the below channels.

join
Click Above for Telegram
discord
Click Above for Discord
reddit
Click Above for Reddit
hd linkedin
Click Above For LinkedIn

You may have missed

image

[HUNTERS] – Ransomware Victim: A&O IT Group

November 15, 2024
image

[RANSOMHUB] – Ransomware Victim: www[.]gob[.]mx

November 15, 2024
image

[EVEREST] – Ransomware Victim: Bio-Clima Service Srl

November 15, 2024
image

[FOG] – Ransomware Victim: Vector Transport (vectortransport[.]com)

November 15, 2024
image

[EVEREST] – Ransomware Victim: A Sensitive Touch Home Health;Alphastar Home Health Care;Heart of Texas Home Healthcare Se

November 15, 2024