This time the vulnerability affected more than one website as the bugs were in django framework and in Google Analytics. It led to arbitrary cookie write and could result in complete bypassing double submit cookie CSRF prevention mechanism.
Original report:
https://hackerone.com/reports/26647
Reporter:
https://hackerone.com/bobrov
https://twitter.com/Black2Fan
Follow me on twitter:
https://twitter.com/gregxsunday
Timestamps:
00:00 Intro
00:21 Google Analytics
01:16 How do webservers handle cookies
02:46 Overriding cookie attributes
03:36 Double submit cookies
04:42 Putting it all together
#csrf #django
Add comment