Sunday 4 March 2018, 13:25 #2
Web - Client CSRF 0 Protection
Hi NightWalker,
i don’t think there is way to find out other than your exploit working. Make sure your browser is not blocking the exploit.
regards
oweissbarth
Monday 12 March 2018, 08:07 #3
Web - Client CSRF 0 Protection
Actually you could set up your own local server and test some tags that connect to it.
I see that the admin checks his mail every minute or 2
Friday 6 April 2018, 14:37 #4
Web - Client CSRF 0 Protection
just use xss to confirm it :)