{"blog_url":"https://cysec148.hatenablog.com/","url":"https://cysec148.hatenablog.com/entry/2021/02/12/183018","description":"Hello there, ('\u03c9')\u30ce CSRF\u30c8\u30fc\u30af\u30f3\u4fdd\u8b77\u3092\u4f7f\u7528\u3057\u305f\u57fa\u672c\u7684\u306a\u30af\u30ea\u30c3\u30af\u30b8\u30e3\u30c3\u30ad\u30f3\u30b0\u3092\u3002 \u307e\u305a\u306f\u3001\u30ed\u30b0\u30a4\u30f3\u3057\u3066\u3002 Account actions\u3092\u30af\u30ea\u30c3\u30af\u3057\u3066\u30da\u30fc\u30b8\u3092\u8868\u793a\u3057\u3066\u3002 Delete account\u3092\u30af\u30ea\u30c3\u30af\u3059\u308b\u3068\u3002 CSRF\u30c8\u30fc\u30af\u30f3\u3067\u4fdd\u8b77\u3055\u308c\u3066\u3044\u308b\u3088\u3046\u3067\u3002 \u4e00\u65e6\u3001Drop\u3057\u3066\u3002 \u30d6\u30e9\u30a6\u30b6\u30dc\u30bf\u30f3\u3067\u623b\u3063\u3066\u3002 \u30af\u30ea\u30c3\u30af\u3055\u305b\u308b\u304a\u3068\u308a\u3068\u306a\u308b\u30a6\u30a7\u30d6\u30b5\u30a4\u30c8\u3092\u8868\u793a\u3055\u305b\u3066\u3002 https://ac541f071feb9c3380ca2cc600430089.web-security-academy.net/account \u30da\u30fc\u30b8\u4e0a\u306b\u304b\u3076\u305b\u308b\u304a\u3068\u308a\u306e\u30da\u30fc\u30b8\u3092\u4f5c\u6210\u3057\u3066\u3002 opacity\u306f\u3001\u900f\u660e\u2026","html":"<iframe src=\"https://hatenablog-parts.com/embed?url=https%3A%2F%2Fcysec148.hatenablog.com%2Fentry%2F2021%2F02%2F12%2F183018\" title=\"Basic clickjacking with CSRF token protection\u3092\u3084\u3063\u3066\u307f\u305f - Shikata Ga Nai\" class=\"embed-card embed-blogcard\" scrolling=\"no\" frameborder=\"0\" style=\"display: block; width: 100%; height: 190px; max-width: 500px; margin: 10px 0px;\"></iframe>","height":"190","provider_url":"https://hatena.blog","provider_name":"Hatena Blog","title":"Basic clickjacking with CSRF token protection\u3092\u3084\u3063\u3066\u307f\u305f","type":"rich","author_url":"https://blog.hatena.ne.jp/ThisIsOne/","version":"1.0","published":"2021-02-12 18:30:18","blog_title":"Shikata Ga Nai","author_name":"ThisIsOne","width":"100%","image_url":"https://cdn-ak.f.st-hatena.com/images/fotolife/T/ThisIsOne/20210212/20210212141852.png","categories":["PortSwigger"]}