Cross-Site Request Forgery (CSRF) in namelessmc/nameless
Aug 24th 2021
csrf bug to lock a topic
🕵️♂️ Proof of Concept
i see everywhere is csrf token checking . But in this case csrf token checking is missing .
Bellow url is vulnerable to csrf attack to lock a topic .
csrf bug to lock a profile