Results 1 to 3 of 3

Thread: Article: Account Compromise & Anti CSRF Token Bypass Share/Save - My123World.Com!

  1. #1

    Article: Account Compromise & Anti CSRF Token Bypass


  2. #2
    very informativ3 .........................................

  3. #3
    Thank you so much Ajay for your efforts in writing and sharing it with us . I have a query .
    How do you call it as "Bypass" since you are actually sending Valid Token along with an invalid Token .
    As per your post , On sending an invalid token server actually denies the request . when you were actually able to add a single invalid CSRF token request and the server doesn't validate then , you can call it as bypass . Right ? Am i missing something here ? can you please make me understand how

    Thanks ,
    Sreganesh

Posting Permissions

  • You may not post new threads
  • You may not post replies
  • You may not post attachments
  • You may not edit your posts
  •