writeups.xyz / Improper CSRF token handling leads to site-wide CSRF issue, chained with clickjacking = woot! Multiple sites vulnerable

Submitter : c2a

Date: 29 October 2018

Bounty : undisclosed

Vulnerabilities :

• CSRF
• Clickjacking

Programs :

• Undisclosed

Authors :

• Zseano (@Zseano)

Link :
https://zseano.medium.com/site-wide-csrf-issue-chained-with-clickjacking-multiple-sites-vulnerable-6201abab0d3e