An XSS which is protected by a CSRF token - discuss.
-
-
Replying to @avlidienbrunn
@avlidienbrunn@Bitquark my 2 cents - Self-XSS or any kind of XSS should be fixed. Period. But, that's a diff argument I guess.1 reply 0 retweets 0 likes
Replying to @anshuman_bh
@anshuman_bh @Bitquark oh, definitely it should. However impact-wise I think it's fair say they're equivalent.
1:01 PM - 4 Nov 2014
0 replies
0 retweets
2 likes
Loading seems to be taking a while.
Twitter may be over capacity or experiencing a momentary hiccup. Try again or visit Twitter Status for more information.