Login
From:
zhero_web_security
(Uncensored)
subscribe
A web cache deception chained to a CSRF, the recipe
https://zhero-web-sec.github.io/cache-deception-to-csrf/
links
backlinks
Tagged with:
cache
csrf
Recently, I received a bounty for a vulnerability discovered on an e-commerce site allowing the personal information — including the delivery address — of a user to be changed. Let’s talk about it!
Roast topics
Find topics
Find it!
