mirror of
https://github.com/daffainfo/AllAboutBugBounty.git
synced 2024-12-18 10:26:11 +00:00
fix: remove 1 line on OSRF
This commit is contained in:
parent
795bd8c2e6
commit
0a16c9d981
@ -13,8 +13,7 @@ You can detect On-Site Request Forgery (OSRF) everywhere but there are 2 things
|
||||
<audio src="OUR_INPUT_HERE">
|
||||
<iframe src="OUR_INPUT_HERE">
|
||||
```
|
||||
- We can control the filename (there are several requirements that must be met)
|
||||
- There is a sensitive endpoint that using the GET method
|
||||
- There is a sensitive endpoint that using the GET method
|
||||
|
||||
```
|
||||
GET /settings.php?remove_account=1
|
||||
|
Loading…
Reference in New Issue
Block a user