CSRF

2023

A smorgasbord of a bug chain: postMessage, JSONP, WAF bypass, DOM-based XSS, CORS, CSRF... May 5

2022

CVE-2022-21703: cross-origin request forgery against Grafana Feb 8

2021

Subdomain takeover: ignore this vulnerability at your peril Feb 12