Original report:
https://hackerone.com/reports/26647
Reporter:
https://hackerone.com/bobrov
https://twitter.com/Black2Fan
Follow me on twitter:
https://twitter.com/gregxsunday
Timestamps:
00:00 Intro
00:21 Google Analytics
01:16 How do webservers handle cookies
02:46 Overriding cookie attributes
03:36 Double submit cookies
04:42 Putting it all together
#csrf #django
Add comment