• 0 Vote(s) - 0 Average
  • 1
  • 2
  • 3
  • 4
  • 5
CSRF Protection

#1
CSRF protection wasn't effective enough as i simulate it, or am I lacking a validation. I've try to copy it the code that generated by the system and put it to another form. data i forge by another form added to database successfully. can you help me guys how to make validation using csrf token generated by the system. thanks in advance.
Reply

#2
If you try that from the same browser the needed cookie will be present and thus validation will pass.

Try by posting the copied form from a different browser.
Reply


Digg   Delicious   Reddit   Facebook   Twitter   StumbleUpon  


  Theme © 2014 iAndrew  
Powered By MyBB, © 2002-2020 MyBB Group.