Closed ghost closed 6 years ago
With GET a malicious user can forcibly log out your users by posting an "image" with src=/logout (![title](/logout) in markdown).
![title](/logout)
nice, as always
With GET a malicious user can forcibly log out your users by posting an "image" with src=/logout (
![title](/logout)
in markdown).