[Solved] Any thing better than CSRF

[Solved] Any thing better than CSRF

Diederik
Senior Member
Posts: 299
Threads: 0
Joined: Jan 2015
Reputation: 20

12-17-2016, 02:30 AM

I remember I ran into such an issue a while ago. Turned out I made some misrake where it ran form / csrf validation twice. So the first check regenerated the csrf key so the secind pass would always return false... Perhaps you could try finding such a case in your code. To trace this case I put some debug echo code in the core form validation/csrf files.

Messages In This Thread

[Solved] Any thing better than CSRF - by wolfgang1983 - 12-16-2016, 12:07 AM

RE: Any thing better than CSRF - by PaulD - 12-16-2016, 11:44 AM

RE: Any thing better than CSRF - by wolfgang1983 - 12-16-2016, 01:33 PM

RE: Any thing better than CSRF - by PaulD - 12-16-2016, 03:57 PM

RE: Any thing better than CSRF - by wolfgang1983 - 12-16-2016, 09:11 PM

RE: Any thing better than CSRF - by Diederik - 12-17-2016, 02:30 AM

RE: Any thing better than CSRF - by wolfgang1983 - 12-17-2016, 03:24 AM

RE: Any thing better than CSRF - by wolfgang1983 - 12-20-2016, 01:10 AM

RE: Any thing better than CSRF - by skunkbad - 12-17-2016, 03:23 PM

RE: Any thing better than CSRF - by wolfgang1983 - 12-17-2016, 03:40 PM

RE: Any thing better than CSRF - by kenjis - 12-17-2016, 05:12 PM

RE: Any thing better than CSRF - by Diederik - 12-20-2016, 03:13 AM

RE: Any thing better than CSRF - by wolfgang1983 - 12-22-2016, 08:21 PM