• Cross-site request forgery
    Cross-site request forgery, also known as one-click attack or session riding and abbreviated as CSRF (sometimes pronounced sea-surf) or XSRF, is a type...
    30 KB (3,741 words) - 08:46, 14 June 2024
  • Thumbnail for HTTP cookie
    HTTP cookie (redirect from Same-site cookie)
    to the website to which the cookie belongs (see cross-site scripting and cross-site request forgery for examples). Tracking cookies, and especially third-party...
    91 KB (10,784 words) - 01:05, 1 June 2024
  • Server-side request forgery
    otherwise not be directly accessible to the attacker. Similar to cross-site request forgery which utilizes a web client, for example, a web browser, within...
    4 KB (558 words) - 04:32, 6 May 2024
  • JSONP (section Cross-site request forgery)
    with malicious data. Naive deployments of JSONP are subject to cross-site request forgery (CSRF or XSRF) attacks. Because the HTML <script> element does...
    15 KB (1,761 words) - 03:36, 28 December 2023
  • Thumbnail for List of HTTP header fields
    List of HTTP header fields (redirect from HTTP request header field)
    January 19, 2014. "SAP Cross-Site Request Forgery Protection". SAP SE. Retrieved January 20, 2015. "Django Cross Site Request Forgery protection". Django...
    52 KB (2,464 words) - 01:31, 11 June 2024
  • Thumbnail for JavaScript
    JavaScript (category Cross-platform software)
    browser authors. Another cross-site vulnerability is cross-site request forgery (CSRF). In CSRF, code on an attacker's site tricks the victim's browser...
    95 KB (9,292 words) - 05:01, 18 April 2024
  • Cross-site
    Cross-site may refer to the following network security exploits: Cross-site cooking Cross-site request forgery Cross-site scripting Cross-site tracing...
    194 bytes (55 words) - 04:12, 28 December 2019
  • Session fixation (section Regenerate SID on each request)
    solved to a great extent. This technique is also useful against cross-site request forgery attacks. The session identifier on most modern systems is stored...
    18 KB (2,566 words) - 11:07, 20 May 2024
  • Cross-site leaks
    only be set by the browser. Cross origin resource sharing Same origin policy Cross-site scripting Cross-site request forgery While there are other possible...
    64 KB (7,424 words) - 05:39, 29 April 2024
  • Confused deputy problem
    program's own permission to access the file is used implicitly. A cross-site request forgery (CSRF) is an example of a confused deputy attack that uses the...
    9 KB (1,221 words) - 03:34, 13 May 2024