Any one knows how I could setup a flash file and a redirect to bypass a simple csrf protection? (There is no csrf token, only a header stopping me from completing this CSRF : X-Requested-With: XMLHttpRequest)
I know this can be done on Safari, but there is no tutorial documenting how to do so =(
It is exactly the same scenario as this report:
Would really appreciate if someone could point me towards the right direction.