-
SourceBans++ web panel has inadequate [XSRF](https://www.owasp.org/index.php/Cross-Site_Request_Forgery_(CSRF)) protection. Administrators that are coerced or inadvertently exposed to malicious code m…
hctim updated
5 years ago
-
Hi,
I get this error for every warp executor transaction attempt. The response is always empty. I logged the entire error to investigate:
error: {
"message": ": ",
"name": "Aggrega…
-
**XSRF** issue exists @ **Content/StoredXSS.aspx.cs** in branch **master**
*Method btnSave_Click at line 26 of Content\StoredXSS.aspx.cs gets a parameter from a user request from Text. This paramet…
-
**XSRF** issue exists @ **WebGoatCoins/ProductDetails.aspx.cs** in branch **master**
*Method btnSave_Click at line 37 of WebGoatCoins\ProductDetails.aspx.cs gets a parameter from a user request fro…
-
A test failed on a tracked branch
```
AxiosError: Request failed with status code 500
at settle (node_modules/axios/lib/core/settle.js:19:12)
at IncomingMessage.handleStreamEnd (node_modules/…
-
[OWASP recommends](https://cheatsheetseries.owasp.org/cheatsheets/Cross-Site_Request_Forgery_Prevention_Cheat_Sheet.html#login-csrf) to generate a new CSRF token after authentication:
> Remember th…
-
Hello friends, i am facing this issue,please help me. XMLHttpRequest cannot load http://api.wunderground.com/api/apitoken/conditions/q/FL/Miami.json. Request header field X-XSRF-TOKEN is not allowed b…
-
A test failed on a tracked branch
```
AxiosError: Request failed with status code 500
at settle (node_modules/axios/lib/core/settle.js:19:12)
at IncomingMessage.handleStreamEnd (node_modules/…
-
**XSRF** issue exists @ **root/login.jsp** in branch **develop**
*Method = at line 8 of root\login.jsp gets a parameter from a user request from ""password"". This parameter val…
-
**XSRF** issue exists @ **root/register.jsp** in branch **develop**
*Method = at line 7 of root\register.jsp gets a parameter from a user request from ""password1"". This parame…