Thursday 21 February 2019, 08:15 #5
Web - Client CSRF token bypass
Hi, even though I pass this challenge, I wonder when I create a form in HTML, use script to get token then pass it to form’s token and auto submit form by script; this solution not work. When I use script only, no HTML form, it work.