Welcome, Guest: Register On Nairaland / LOGIN! / Trending / Recent / NewStats: 3,197,513 members, 7,965,044 topics. Date: Thursday, 03 October 2024 at 07:31 AM |
Nairaland Forum / Science/Technology / Webmasters / Beware Of This Attack: Cross-site Request Forgery (CSRF) (840 Views)
Establishing An IT Firm In Calabar ( Cross River ) / Hacking Challenge Cross Site Scripting (xss) Prelab 5 || - Phynxlabs (2) (3) (4)
(1) (Reply)
Beware Of This Attack: Cross-site Request Forgery (CSRF) by omni1: 9:52am On Mar 13, 2013 |
From observation, this Cross-Site Request Forgery (CSRF) is becoming so rampant. Most of them come in form of shortened URL and most are spread on social mediae like blogs, Twitter, Facebook, Stumble upon, etc. One needs to be careful on what links are clicked because the resultant effects might be so dangerous before you can tell what action you just took. Coders also should take a peep at this and see how to protect their applications from being agents of such attacks. Overview CSRF is an attack which forces an end user to execute unwanted actions on a web application in which he/she is currently authenticated. With a little help of social engineering (like sending a link via email/chat), an attacker may force the users of a web application to execute actions of the attacker's choosing. A successful CSRF exploit can compromise end user data and operation in case of normal user. If the targeted end user is the administrator account, this can compromise the entire web application. See more here: https://www.owasp.org/index.php/Cross-Site_Request_Forgery_(CSRF) |
Re: Beware Of This Attack: Cross-site Request Forgery (CSRF) by Slyr0x: 8:14pm On Apr 10, 2013 |
Hmmmn. . .I wrote something on this in 2010. .You can check here http://codename-intrusion..com/2010/10/cross-site-request-forgery-are-your-web.html 1 Like |
(1) (Reply)
Please Comments And Criticism On This Project / How Do I View Wordpress Site On Mobile In Local Environment? / Urgently Needed! A Mini Site
(Go Up)
Sections: politics (1) business autos (1) jobs (1) career education (1) romance computers phones travel sports fashion health religion celebs tv-movies music-radio literature webmasters programming techmarket Links: (1) (2) (3) (4) (5) (6) (7) (8) (9) (10) Nairaland - Copyright © 2005 - 2024 Oluwaseun Osewa. All rights reserved. See How To Advertise. 9 |