CSRF that makes any linkedin user follow attacker controlled accounts by simply clicking https://www.linkedin.com/comm/mynetwork/discovery-see-all/*
Medium
L
LinkedIn
Submitted None
Team Summary
Official summary from LinkedIn
The researcher identified a CSRF issue which could potentially trick a member into following an account without additional confirmation by clicking a specially crafted URL.
Actions:
Reported by
marvelmaniac
Report Details
Additional information and metadata
State
Closed
Substate
Resolved
Submitted
Weakness
Cross-Site Request Forgery (CSRF)