Cross Site Request Forgery | P2-P4 | Bug Bounty Series - EP 14 | Ran$ome

Welcome back to the channel guys, in this episode we will be learning about CSRF or Cross Site Request Forgery. It generally varies from P2-P4 in severity.

Cross-Site Request Forgery (CSRF) is an attack that forces authenticated users to submit a request to a Web application against which they are currently authenticated. CSRF attacks exploit the trust a Web application has in an authenticated user.

Deleting account and changing sensitive account information (Password, Email) comes under P2, changing non severe account details (Profile Picture, Name, Nickname, Address) comes under P3 & all other kind of CSRF comes under P4.

Sample report - pastebin.com/b4d4TWdX

Do comment if you have any doubt and do like and subscribe the channel for more such cybersecurity related content.