CSRF Attack

[Responsible Disclosure]CSRF Attack on Prestashop

Add-on/Plugin Details Plugin name: Data privacy extended (data protection law) – GDPR Module Vulnerability name: CSRF (Cross-Site Request Forgery) in the “Delete Account” Affected Prestashop versions: v1.6.0.4 – v1.7.6.0 Vulnerable Version: <3.7.8 Patched version: 3.7.8 Vulnerability Reported: 20th June 2019 Vulnerability Patched: 25th June 2019 So, during my internship at Astra Web Security by Czar, …

[Responsible Disclosure]CSRF Attack on Prestashop Read More »