| 4074 | CORS To CSRF Attack |
CORS misconfiguration
CSRF |
NA |
Osama Avvan (@osamaavvan) |
Bug Bounty | 2019-06-27 | 2023-06-13 |
| 4059 | Account Takeover Using CSRF(json-based) |
CSRF
Account takeover |
NA |
shub rathore (@shub66452) |
Bug Bounty | 2019-07-04 | 2023-06-13 |
| 4042 | [TOKOPEDIA] Site-wide CSRF through GraphQL request |
CSRF |
Tokopedia |
Rafie Muhammad (@rafiem777) |
Bug Bounty | 2019-07-15 | 2023-06-13 |
| 4036 | Bypass CSRF With ClickJacking Worth $1250 |
CSRF
Clickjacking |
NA |
Saad Ahmed (@XSaadAhmedX) |
Bug Bounty | 2019-07-16 | 2023-06-13 |
| 4035 | CSRF Email Confirmation Vulnerability for Gmail & G-Suite in Facebook |
CSRF |
Meta / Facebook |
Lokesh Kumar (@lokeshdlk77) |
Bug Bounty | 2019-07-16 | 2023-06-13 |
| 3908 | A Simple bypass of Registration Activation that Lead to many Bug - |
Information disclosure
IDOR
CSRF |
NA |
YoKo Kho (@YokoAcc) |
Bug Bounty | 2019-09-21 | 2023-06-13 |
| 3889 | How I made 1000$ with AT&T Bug Bounty(H1) |
CSRF
Account takeover |
AT&T |
Adesh Nandkishor kolte (@AdeshKolte) |
Bug Bounty | 2019-10-02 | 2023-06-13 |
| 3880 | An inconsistent CSRF |
CSRF |
NA |
Smaran Chand (@smaranchand) |
Bug Bounty | 2019-10-15 | 2023-06-13 |
| 3859 | XSS to Account Takeover |
XSS
CSRF |
NA |
Tomi (@noobe_io) |
Bug Bounty | 2019-10-29 | 2023-06-13 |
| 3858 | Cross Site Request Forgery Critical Exploitable IN Infected Site? |
CSRF |
NA |
Hossam Mesbah |
Bug Bounty | 2019-10-29 | 2023-06-13 |
| 3812 | The AccountTakeOver Killing Chain |
Account takeover
CSRF
Self-XSS |
NA |
أنس روبي (@xhzeem) |
Bug Bounty | 2019-11-23 | 2023-06-13 |
| 3803 | How I turned Self XSS to Stored via CSRF |
Self-XSS
CSRF |
NA |
Abhishek Yadav (@abhishake100) |
Bug Bounty | 2019-11-29 | 2023-06-13 |
| 3792 | Media deletion CSRF vulnerability on Instagram |
CSRF |
Meta / Facebook |
Pouya Darabi (@Pouyadarabi) |
Bug Bounty | 2019-12-09 | 2023-06-13 |
| 3777 | Stored Iframe Injection + CSRF = Account Takeover 😎😎 |
HTML injection
CSRF |
NA |
Rounak Dhadiwal (@XploiteR_D) |
Bug Bounty | 2019-12-16 | 2023-06-13 |
| 3767 | 2 FA Bypass via CSRF Attack |
MFA bypass
CSRF |
Mail.ru |
Vishal Bharad |
Bug Bounty | 2019-12-23 | 2023-06-13 |
| 3764 | CSRF Token Bypasss — A Tale of my $2k bug |
CSRF
Account takeover |
NA |
Adeyefa Oluwatoba (@adeyefa_codes) |
Bug Bounty | 2019-12-23 | 2023-06-13 |
| 3716 | Cross Site Request Forgery vulnerability Leads to User Profile Change in Microsoft Express Logic |
CSRF |
Microsoft |
Adesh Nandkishor kolte (@AdeshKolte) |
Bug Bounty | 2020-01-21 | 2023-06-13 |
| 3715 | Google Bug Bounty: CSRF in learndigital.withgoogle.com |
CSRF |
Google |
santuySec (@santuySec) |
Bug Bounty | 2020-01-21 | 2023-06-13 |
| 3691 | CSRF CSRF CSRF… |
CSRF |
NA |
Navneet (@na5n33t) |
Bug Bounty | 2020-02-03 | 2023-06-13 |
| 3682 | Using CSRF I Got Weird Account Takeover |
CSRF
Account takeover |
NA |
Mohamed Sayed (@FlEx0Geek) |
Bug Bounty | 2020-02-05 | 2023-06-13 |
| 3680 | Site wide CSRF on a popular program |
CSRF |
NA |
Ajinkya Pathare (@fellchase) |
Bug Bounty | 2020-02-05 | 2023-06-13 |
| 3662 | Exploiting WebSocket [Application Wide XSS / CSRF] |
XSS
CSRF |
NA |
Osama Avvan (@osamaavvan) |
Bug Bounty | 2020-02-17 | 2023-06-13 |
| 3655 | Exploiting Jira for Host Discovery |
CSRF |
Atlassian |
Alex Peña |
Bug Bounty | 2020-02-20 | 2023-06-13 |
| 3633 | How I CSRF’d My First Bounty! |
CSRF |
NA |
Rajesh Ranjan (@rajesh_ranjan4) |
Bug Bounty | 2020-03-03 | 2023-06-13 |
| 3625 | How I exploit the JSON CSRF with method override technique |
CSRF |
NA |
Simgamsetti Manikanta (@zaheckmania) |
Bug Bounty | 2020-03-07 | 2023-06-13 |
