I would like to share with you CSRF Vulnerability which I found in Heroku site.
Attacker able to change user name and e-mail id.
POC Video :
On 26th Jul, They fixed this vulnerability .
I would like to share with you CSRF Vulnerability which I found in Heroku site.
Attacker able to change user name and e-mail id.
POC Video :
Author
Information Security Professional and Independent Researcher and working for Ethical Hacking. Identify security vulnerabilities and weaknesses in the target applications, establish the business impact and ease of exploitation associated with each issue identified, and provide appropriate remedial recommendations that should be implemented in order to mitigate the impact of the issues identified.
