Blogs about: Csrf
Featured Blog
Tide Out for Web Application Firewalls
I recently stumbled across an article by Ivan Ristic who also writes for the ModSecurity Web Security Blog. It’s about how 2008 is finally going to become the year of Web Application Firewalls. … more →
Cyberphobia
JS Judo + XSS + CSRF = Pwnage
dblackshell wrote 2 weeks ago: …an excellent breeding environment for an XSS worm… What is an XSS worm? Wikipedia An … more →
Cross-Site Request Forgery en Plone 3.0.x
Julián Rodríguez wrote 2 months ago: Se ha encontrado una vulnerabilidad en Plone 3.0.x que podría ser explotada por un atacante remoto … more →
Site Security Policy - Mitigating Drive-by-Downloads
5thsentinel wrote 2 months ago: Brandon Sterne from Mozilla has been working on a way to solve the security threats caused by the r … more →
Regenerative Tokens
— 5 comments
dblackshell wrote 2 months ago: As maybe you already read the article new fashion, new ways (or not) article which presented a coupl … more →
Upgrading Plone to address vulnerabilities
John DeStefano wrote 3 months ago: Plone has just released an important update to address possible cross-site request forging attacks. … more →
RSS: the next conduit to launch CSRF against MASHUPS
Michael Coates wrote 3 months ago: [Substitute "Google" with your favorite mash-up site throughout this article] RSS feeds are slowly g … more →
February OWASP - Top 10 Exploits
Andy wrote 5 months ago: We’ll review OWASP in a moment. First I wanted to give you an update on the week. This upcom … more →
new fashion, new ways (or not)
— 1 comment
dblackshell wrote 6 months ago: Some time ago when I posted I Love CSRF (XSRF) fazed invited me to do a presentation on CSRF attack … more →
Tide Out for Web Application Firewalls
— 2 comments
cyberphob1a wrote 7 months ago: I recently stumbled across an article by Ivan Ristic who also writes for the ModSecurity Web Securit … more →
Phishing over CSRF
— 1 comment
cyberphob1a wrote 7 months ago: In my posting CSRF: And Go it Does, I wrote about a recently discovered Cross-Site-Request Forgery v … more →
CSRF over Flash
cyberphob1a wrote 7 months ago: With great interest I read the research and the corresponding FAQ by pdp and pagvac at GNUCitizen ab … more →
And Go it Does: CSRF
— 1 comment
cyberphob1a wrote 7 months ago: Remember my last post about CSRF and me predicting that this will be the vulnerability of 2008? Amaz … more →
Go, CSRF, Go!
cyberphob1a wrote 7 months ago: You think that Cross-Site Request Forgery (CSRF, XSRF, Session Riding, whatever you want to call it) … more →
Cross-site request forgery on phpBB old versions
garabedyan wrote 7 months ago: Same origin policy and Cross-site request forgery (CSRF) Same origin policy in web browsers and att … more →
Joomla multiple Vulnerabilities.
— 2 comments
azimyasin wrote 7 months ago: An advisory is being released regarding Joomla CSRF that can lead to total compromise of it.! http:/ … more →
I love CSRF (XSRF)
— 3 comments
dblackshell wrote 10 months ago: I really do love CSRF?…. and it all started back when I was reading a topic on w4ck1ng forum, … more →
Phishing 2.0
cleartext wrote 1 year ago: I have had several conversations recently about phishing, in particular spear phishing or social phi … more →
Have your say. Start a blog.
See our free features →
An 
Joint
