Mail.ru: CSRF on lootdog.io

2018-02-17T08:54:01
ID H1:317053
Type hackerone
Reporter danila_xawdxawdx
Modified 2018-11-12T17:39:55

Description

CSRF vulnerability for phone/email change action.

On the time of reporting, lootdog.io clientside vulnerabilities were not covered with bug bounty.