Skip to content

Latest commit

 

History

History
48 lines (36 loc) · 1.16 KB

tab_features.md

File metadata and controls

48 lines (36 loc) · 1.16 KB
title layout order tab tags
Features
1
true
csrfguard

OWASP CSRFGuard 4.0.0

OWASP CSRFGuard 4.0.0

Some CSRGuard features

Tags

<img src=“https://bank.com/fn?param=1”>
<iframe src=“https://bank.com/fn?param=1”>
<script src=“https://bank.com/fn?param=1”>

Autoposting Forms

<body onload="document.forms[0].submit()">
<form method="POST" action=“https://bank.com/fn”>
   <input type="hidden" name="sp" value="8109"/>
</form>

XmlHttpRequest

Subject to same origin policy

Credentials Included

Credentials Included

How Does CSRF Work?

What is CSRF (Cross-Site Request Forgery) Attacks

How Does CSRF Work How Does CSRF Work How Does CSRF Work How Does CSRF Work How Does CSRF Work How Does CSRF Work How Does CSRF Work