关键字【Cross-Site Request Forgery (CSRF)】的搜索结果共1602记录

公开时间 奖金 作者 标题 厂商 漏洞类型
2019-02-08 $ apapedulimu Missing CSRF Token On Remove Coupun From Cart Starbucks Cross-Site Request Forgery (CSRF)
2019-02-07 $3500.0 alexbirsan XSSI on refer.xoom.com allows stealing email addresses and posting to Twitter on behalf of victim PayPal Cross-Site Request Forgery (CSRF)
2019-01-28 $ xalerafera CSRF на загрузку изображения Pandao Mail.ru Cross-Site Request Forgery (CSRF)
2019-01-28 $300.0 povargek Проверяем принадлеженость email и номера телефона к определенному юзеру / CSRF на смену номера для некоторых пользователей VK.com Cross-Site Request Forgery (CSRF)
2019-01-25 $3000.0 seifelsallamy Reflected XSS POST method at partners.uber.com Uber Cross-site Scripting (XSS) - Reflected
2019-01-22 $ apapedulimu Missing CSRF Token On Add Coupon To Basket Starbucks Cross-Site Request Forgery (CSRF)
2019-01-21 $250.0 sudi [auth2.zomato.com] Reflected XSS at `oauth2/fallbacks/error` | ORY Hydra an OAuth 2.0 and OpenID Connect Provider Zomato Cross-site Scripting (XSS) - Reflected
2019-01-11 $ mik317 Account takeover due to CSRF in "Account details" option on █████████ U.S. Dept Of Defense Cross-Site Request Forgery (CSRF)
2019-01-07 $750.0 xpaw Reflected XSS on help.steampowered.com Valve Cross-site Scripting (XSS) - Reflected
2019-01-07 $750.0 tvmpt XSS @ store.steampowered.com via agecheck path name Valve Cross-site Scripting (XSS) - Reflected
2019-01-07 $500.0 romesful CSRF | Ban or unban users in broadcast's chat Valve Cross-Site Request Forgery (CSRF)
2019-01-07 $750.0 mvc Stored XSS in the guide's GameplayVersion (www.dota2.com) Valve Cross-site Scripting (XSS) - Stored
2019-01-07 $7500.0 zemnmez XSS in steam react chat client Valve Cross-site Scripting (XSS) - Stored
2019-01-06 $ skyn3t [buttle] Unsafe rendering of Markdown files Node.js third-party modules Cross-site Scripting (XSS) - Generic
2018-12-24 $2000.0 palant Kaspersky Password Manager: HTML injection in the browser action pop-up via user name Kaspersky Lab Cross-site Scripting (XSS) - Stored