tag:blogger.com,1999:blog-3650259870998252242.post2612898448878257155..comments2023-10-20T18:17:56.706+02:00Comments on the world. according to koto: Poor Princess Leia! Tumblr.com CSRF domain hijackAnonymoushttp://www.blogger.com/profile/11516786094492717236noreply@blogger.comBlogger3125tag:blogger.com,1999:blog-3650259870998252242.post-47029879009742422682013-12-27T22:49:30.241+01:002013-12-27T22:49:30.241+01:00If target is checking referer header in all ways. ...If target is checking referer header in all ways. Then is it possible to bypass referer protection for CSRF?Deepunoreply@blogger.comtag:blogger.com,1999:blog-3650259870998252242.post-25726754438497694682011-12-19T13:19:27.004+01:002011-12-19T13:19:27.004+01:00I got 2-3 persistent XSS on Tumblr.com . Have repo...I got 2-3 persistent XSS on Tumblr.com . Have reported it to them. <br /><br />Lets hope they fix it soon. They should be having a bug bounty and hall of fame too, just like google. :) Aditya Guptanoreply@blogger.comtag:blogger.com,1999:blog-3650259870998252242.post-31623680018410581602011-11-20T01:22:48.882+01:002011-11-20T01:22:48.882+01:00shame they blocked it...shame they blocked it...LuLu Halal Creamshttps://luluuk.com/noreply@blogger.com