Is this test enough to proof that the web application is vulnerable to Login CSRF?
SCENARIO:
web application which I think is affected by:
a self-xss in the profile section of a user.
logout CSRF
login CSRF
Below I described the test I did to check for the last 2 vulnerabilities, I’d appreciate an opinion about their c… Continue reading Is this test enough to proof that the web application is vulnerable to Login CSRF?