Haft
Search
Search
Dark mode
Light mode
Explorer
Home
❯
Portswigger Labs
❯
CSRF
Folder: Portswigger-Labs/CSRF
12 items under this folder.
Nov 18, 2025
CSRF vulnerability with no defenses
Write-ups
Labs
Portswigger
Nov 18, 2025
CSRF where Referer validation depends on header being present
Write-ups
Labs
Portswigger
Nov 18, 2025
CSRF where token is duplicated in cookie
Write-ups
Labs
Portswigger
Nov 18, 2025
CSRF where token is not tied to non-session cookie
Write-ups
Labs
Portswigger
Nov 18, 2025
CSRF where token is not tied to user session
Write-ups
Labs
Portswigger
Nov 18, 2025
CSRF where token validation depends on request method
Write-ups
Labs
Portswigger
Nov 18, 2025
CSRF where token validation depends on token being present
Write-ups
Labs
Portswigger
Nov 18, 2025
CSRF with broken Referer validation
Write-ups
Labs
Portswigger
Nov 18, 2025
SameSite Lax bypass via cookie refresh
Write-ups
Labs
Portswigger
Nov 18, 2025
SameSite Lax bypass via method override
Write-ups
Labs
Portswigger
Nov 18, 2025
SameSite Strict bypass via client-side redirect
Write-ups
Labs
Portswigger
Nov 18, 2025
SameSite Strict bypass via sibling domain
Write-ups
Labs
Portswigger