CSRF - token bypass

45 Points  0x0

Cross-Site Request Forgery

Author

sambecks,  

Level  Difficulty

Validations

5833 Challengers 3%

Note  Notation

386 Votes

To reach this part of the site please login

Challenge Results Challenge Results

Pseudo Challenge Lang Date
Redhpm Web - Client  CSRF - contournement de jeton fr 27 November 2022 at 20:07
Azrm Web - Client  CSRF - contournement de jeton fr 27 November 2022 at 15:35
elliot00jee Web - Client  CSRF - token bypass en 27 November 2022 at 08:27
azertyty Web - Client  CSRF - contournement de jeton fr 25 November 2022 at 17:46
tankininosore Web - Client  CSRF - contournement de jeton fr 24 November 2022 at 11:47
ismailaib Web - Client  CSRF - token bypass en 23 November 2022 at 20:23
Abderrahim Ajakka Web - Client  CSRF - token bypass en 23 November 2022 at 03:55
loquils Web - Client  CSRF - contournement de jeton fr 22 November 2022 at 17:49
Sophie Web - Client  CSRF - contournement de jeton fr 22 November 2022 at 16:51
arthur Web - Client  CSRF - contournement de jeton fr 22 November 2022 at 16:50

challenges 33 Challenges

Results Name Validations Number of points  Explanation for the scores Difficulty  Difficulty Author Note  Notation Solution Date
pas_valide HTML - disabled buttons 42% 114441 5 Final 10 16 July 2017
pas_valide Javascript - Authentication 47% 126859 5 g0uZ 9 8 October 2006
pas_valide Javascript - Source 44% 120412 5 g0uZ 5 7 October 2006
pas_valide Javascript - Authentication 2 41% 109949 10 na5sim 4 3 February 2011
pas_valide Javascript - Obfuscation 1 39% 104694 10 Hel0ck 10 7 October 2006
pas_valide Javascript - Obfuscation 2 33% 89956 10 Hel0ck 8 3 February 2011
pas_valide Javascript - Native code 24% 65646 15 g0uZ 8 13 March 2011
pas_valide Javascript - Webpack 7% 17405 15 CanardMandarin 3 11 August 2020
pas_valide Javascript - Obfuscation 3 19% 50185 30 Hel0ck 8 4 February 2011
pas_valide XSS - Stored 1 11% 30013 30 g0uZ 10 3 March 2012
pas_valide CSP Bypass - Inline code 2% 3064 35 CanardMandarin 6 27 October 2020
pas_valide CSRF - 0 protection 6% 16439 35 sambecks 8 16 February 2016
pas_valide Web Socket - 0 protection 1% 536 35 Worty 1 22 October 2021
pas_valide XSS DOM Based - Introduction 1% 2608 35 Ruulian 3 12 August 2021
pas_valide Flash - Authentication 2% 5473 40 koma 1 18 June 2012
pas_valide XSS DOM Based - AngularJS 1% 974 40 Ruulian 2 12 August 2021
pas_valide XSS DOM Based - Eval 1% 1044 40 Ruulian 4 12 August 2021
pas_valide CSP Bypass - Dangling markup 1% 1033 45 CanardMandarin 1 27 October 2020
pas_valide CSP Bypass - JSONP 1% 849 45 CanardMandarin 5 27 October 2020
pas_valide CSRF - token bypass 3% 5833 45 sambecks 7 18 February 2016
pas_valide XSS - Reflected 2% 4373 45 pickle 5 16 March 2018
pas_valide CSP Bypass - Dangling markup 2 1% 708 50 CanardMandarin 1 27 October 2020
pas_valide CSP Bypass - Nonce 1% 345 50 Ruulian 2 8 April 2022
pas_valide CSS - Exfiltration 1% 287 50 Forgi 1 8 April 2022
pas_valide Javascript - Obfuscation 4 3% 5635 50 aaSSfxxx 5 18 July 2011
pas_valide XSS - Stored 2 3% 6878 50 g0uZ 7 4 March 2012
pas_valide XSS DOM Based - Filters Bypass 1% 780 50 Ruulian 4 12 August 2021
pas_valide DOM Clobbering 1% 132 60 Mizu 0 8 April 2022
pas_valide HTTP Response Splitting 1% 1864 70 Arod 3 7 November 2013
pas_valide Javascript - Obfuscation 5 1% 654 70 Hel0ck 3 4 February 2011
pas_valide XS Leaks 1% 71 75 Mizu 1 8 April 2022
pas_valide XSS - Stored - filter bypass 1% 1134 80 Arod 7 2 January 2016
pas_valide XSS - DOM Based 1% 680 85 vic 6 24 December 2016