Let’s Bypass CSRF Protection & Password Confirmation to Takeover Victim Accounts :D - rwth-security - lists.rwth-aachen.de

14 Jun 2020


      Hallo zusammen,
sofern nicht selber schon gesehen/-lesen hier [0] FYI
"Let’s Bypass CSRF Protection & Password Confirmation to Takeover Victim Accounts :D"
VG
Bernd
[0]
https://medium.com/bugbountywriteup/lets-bypass-csrf-protection-password-con...
-- 

Bernd Kohler

IT Center
Abteilung: Netze
RWTH Aachen University
Wendlingweg 10
52074 Aachen
Tel: +49 241 80-29793
Fax: +49 241 80-22666
kohler@itc.rwth-aachen.de
www.itc.rwth-aachen.de

Social Media Kanäle des IT Centers:
https://blog.rwth-aachen.de/itc/ 
https://www.facebook.com/itcenterrwth 
https://www.linkedin.com/company/itcenterrwth
https://twitter.com/ITCenterRWTH
https://www.youtube.com/channel/UCKKDJJukeRwO0LP-ac8x8rQ