79193417

Date: 2024-11-15 17:35:11
Score: 2
Natty:
Report link

Is this a bug?

Say with me:

  1. All bugs are just unwanted features.
  2. All bugs are just unwanted features.
  3. All bugs are just unwanted features.

For your case, why is any url other than "https://base.example.domain/context-path/some-other-path/logout" and "https://base.example.domain/context-path/some-other-path/login" allowed to update auth cookies?

In my opinion, its definitely an unwanted behaviour.

Reasons:
  • No code block (0.5):
  • Contains question mark (0.5):
  • Starts with a question (0.5): Is this a
  • Low reputation (0.5):
Posted by: Anubhav Sharma