News
After Cross Site Scripting (XSS), the second most common web application security exploit is probably one you haven’t heard of: Cross Site Request Forgery (or CSRF for short). This little-known ...
Security researcher Petko Petkov has revealed a cross-site request forgery vulnerability in Gmail that makes it possible for a malicious web site to surreptitiously add a filter to a user's Gmail ...
Cross-site request forgery (CSRF) attacks are becoming more sophisticated, but there are many ways you can prevent them.
In addition, Taskiran found an endpoint vulnerable to Cross-Site Request Forgery (CSRF), an attack in which threat actors can dupe users into submitting actions on their behalf to a web ...
Server-side request forgery (SSRF) attacks consist of an attacker tricking the server into making an unauthorized request. Defending against them can be relatively easy.
Cisco has patched several vulnerabilities affecting its Expressway Series collaboration gateways, two of them rated as critical severity and exposing vulnerable devices to cross-site request ...
CISA warns that threat actors are exploiting a high-severity vulnerability in PaperCut NG/MF print management software, which can allow them to gain remote code execution in cross-site request ...
eBay is vulnerable to cross-site request forgery attacks, reported in August and supposedly patched. A researcher says eBay remains vulnerable.
Take advantage of anti-forgery tokens in ASP.NET Core to protect users of your applications against cross site request forgery exploits.
Some results have been hidden because they may be inaccessible to you
Show inaccessible results
Feedback