Home → The Classics → Farai's Codelab
Understanding CSRF Attacks
Published:
See Understanding CSRF Attacks on zellwk.com
This is a good article which looks into what CSRF attacks are and how to prevent them. He’s still working on it but it’s pretty decent so far.
The section on sites using GET requests to make state change is yikes! I think it’s fine if you want to bring up a confirmation page but actually executing an action is awful.
I remember having to work around CSRF for my senior project. It was server side but I had to inspect elements here and store cookies there. Fun times!