HackerOne users: Testing against this community violates our program's Terms of Service and will result in your bounty being denied.
Mini Low Risk Cross Site Request Forgery Bug on 2.0.18.8 Bookmarking
Tested on a local install of 2.0.18.8. Haven't tested anywhere else so it could be just me.
If you include an image like so <img src="http://yourforum.org/vanilla/discussion/bookmark/24514/"> anyone that views the page will automatically bookmark the thread of id 24514. The original book mark url contains the transient hash but removing it doesn't seem to stop it from working for me.
Can anyone else verify this or is it just happening to me?
4
Comments
What I can verify is that this has been fixed in 2.1 - doing the above will throw a 403 unless a transient key is supplied.
Kasper Kronborg Isager (kasperisager) | Freelance Developer @Vanilla | Hit me up: Google Mail or Vanilla Mail | Find me on GitHub