Skip to content

Warning: Trying to access array offset on value of type null in /home/bugbount/public_html/wp-content/plugins/citadela-pro/plugin/Custom_Header/Feature.php on line 309

BugBountyBlog.com

Let's see what this Bug Bounty thing is all about

Home
Blog
Bug Bounty Resources
Bug Bounty News Feed
Contact

CSRF protection on OIDC login is broken

Posted on April 5, 2023by bugbounty

Nextcloud disclosed a bug submitted by mikaelgundersen: https://hackerone.com/reports/1878381

Posted in Bug Bounty News Feed | Hackerone Hacktivity Blog

Post navigation

[www.32red.com] Reverse proxy misconfiguration leads to 1-click account takeover

[shop.resmed.com]CSRF leads to Unsubscribe victim from Communication and Reward Membership

Home

Random ramblings of an amateur Bug Bounty Hunter.