Tag: csrf

All the articles with the tag "csrf".

• Cross-Site Request Forgery on the Admin Order Update Endpoint

  kOaDT

  25 Apr, 2026

  The admin order update endpoint authenticates via cookie and validates nothing else, allowing any same-session page to flip an order's status on the admin's behalf.

• Profile Takeover: Chaining Self-XSS with CSRF

  kOaDT

  4 Mar, 2026

  A Self-XSS in the profile bio editor is harmless on its own. Chain it with a missing CSRF token on the update endpoint and you get cross-user profile takeover.