Join GitHub today
CSRF prevention #54
Same issue as #24 which was unfortunately not recognized for the severe bug that it is.
Yesterday I explained privately the issue to @sheehan and supplied him a POC. Will add the same information here once a fix is released (or otherwise to expedite its release), but for now this issue should merely serve to keep track of it publicly