[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

[FD] CSRF Vulnerability on LinkedIn

To: fulldisclosure@xxxxxxxxxxxx
Subject: [FD] CSRF Vulnerability on LinkedIn
From: Kishor Sonawane <kishorsonawane@xxxxxxxxx>
Date: Thu, 26 Jun 2014 23:41:09 +0530

Hi,

I have discovered a CSRF vulnerability on LinkedIn which allows attacker to
delete any Recommendation of any user.

Attached complete details. I would like to know when can you publish this.

I have informed LikedIn that I am going to publish this on mailing lists.
And they are agreed with it.

-- 

Best Regards,

Kishor S.

Attachment: CSRF_Vunerability_on_linkedIn.docx
Description: application/vnd.openxmlformats-officedocument.wordprocessingml.document

_______________________________________________
Sent through the Full Disclosure mailing list
http://nmap.org/mailman/listinfo/fulldisclosure
Web Archives & RSS: http://seclists.org/fulldisclosure/

Prev by Date: [FD] SECV-05-1402 - Reportico php admin credentials leak
Next by Date: [FD] openSIS 4.5 - 5.3 Cross Site Request Forgery Vulnerability
Previous by thread: [FD] SECV-05-1402 - Reportico php admin credentials leak
Next by thread: [FD] openSIS 4.5 - 5.3 Cross Site Request Forgery Vulnerability
Index(es):
- Date
- Thread