Welcome Guest, Not a member yet? Register   Sign In
CSRF Protection
#1

CSRF protection wasn't effective enough as i simulate it, or am I lacking a validation. I've try to copy it the code that generated by the system and put it to another form. data i forge by another form added to database successfully. can you help me guys how to make validation using csrf token generated by the system. thanks in advance.
Reply
#2

If you try that from the same browser the needed cookie will be present and thus validation will pass.

Try by posting the copied form from a different browser.
Reply




Theme © iAndrew 2016 - Forum software by © MyBB