Kartpay: Bypass _token in forms [Merchant.Kartpay.com ]

Summary: I found a issue in froms related to the Merchant.Kartpay.com domain and it allow to bypassing token. Browsers Verified In: Firefox 68 Steps To Reproduce: 1. Go To Login or any form https://merchant.kartpay.com/merchantlogin 2. Fill form and Intercept in burpsuite next click on LOGIN 3...