Haft
Search
Search
Dark mode
Light mode
Explorer
Haft
About
Home
❯
Offensive Security
❯
Portswigger Labs
❯
CSRF
Folder: Offensive-Security/Portswigger-Labs/CSRF
12 items under this folder.
Jun 02, 2026
CSRF vulnerability with no defenses
Write-ups
Labs
Portswigger
Jun 02, 2026
CSRF where Referer validation depends on header being present
Write-ups
Labs
Portswigger
Jun 02, 2026
CSRF where token is duplicated in cookie
Write-ups
Labs
Portswigger
Jun 02, 2026
CSRF where token is not tied to non-session cookie
Write-ups
Labs
Portswigger
Jun 02, 2026
CSRF where token is not tied to user session
Write-ups
Labs
Portswigger
Jun 02, 2026
CSRF where token validation depends on request method
Write-ups
Labs
Portswigger
Jun 02, 2026
CSRF where token validation depends on token being present
Write-ups
Labs
Portswigger
Jun 02, 2026
CSRF with broken Referer validation
Write-ups
Labs
Portswigger
Jun 02, 2026
SameSite Lax bypass via cookie refresh
Write-ups
Labs
Portswigger
Jun 02, 2026
SameSite Lax bypass via method override
Write-ups
Labs
Portswigger
Jun 02, 2026
SameSite Strict bypass via client-side redirect
Write-ups
Labs
Portswigger
Jun 02, 2026
SameSite Strict bypass via sibling domain
Write-ups
Labs
Portswigger