CSRF token cookie is editable from a cookie manager tool in firefox

CSRF token cookie is editable from a cookie manager tool in firefox

El Forum
Guest

12-10-2011, 02:52 AM

[eluser]vicky_ratnesh[/eluser]
Hi All,

I am facing a problem in CodeIgniter's CSRF Cookie token. Everything is working fine, only the issue is, that we are able to edit and insert some junk code for the cookie csrf_token_value [some name] by using any cookie manager [fire-fox addon], which is a kind of security threat. Can any one tell me how to make the cookie non-editable or any other solution to protect my cookie values.

Manny Manny thanks...

Messages In This Thread

CSRF token cookie is editable from a cookie manager tool in firefox - by El Forum - 12-10-2011, 02:52 AM

CSRF token cookie is editable from a cookie manager tool in firefox - by El Forum - 03-20-2012, 01:39 AM

CSRF token cookie is editable from a cookie manager tool in firefox - by El Forum - 03-20-2012, 01:56 AM

CSRF token cookie is editable from a cookie manager tool in firefox - by El Forum - 03-20-2012, 02:18 AM

CSRF token cookie is editable from a cookie manager tool in firefox - by El Forum - 03-20-2012, 02:38 AM