• Cross-site request forgery
    Cross-site request forgery, also known as one-click attack or session riding and abbreviated as CSRF (sometimes pronounced sea-surf) or XSRF, is a type...
    30 KB (3,749 words) - 16:12, 5 September 2024
  • Thumbnail for HTTP cookie
    HTTP cookie (redirect from Same-site cookie)
    to the website to which the cookie belongs (see cross-site scripting and cross-site request forgery for examples). Tracking cookies, and especially third-party...
    93 KB (10,970 words) - 03:48, 26 August 2024
  • Server-side request forgery
    otherwise not be directly accessible to the attacker. Similar to cross-site request forgery which utilizes a web client, for example, a web browser, within...
    2 KB (216 words) - 23:48, 30 June 2024
  • Thumbnail for List of HTTP header fields
    List of HTTP header fields (redirect from HTTP request header field)
    January 19, 2014. "SAP Cross-Site Request Forgery Protection". SAP SE. Retrieved January 20, 2015. "Django Cross Site Request Forgery protection". Django...
    53 KB (2,476 words) - 05:39, 14 September 2024
  • JSONP (section Cross-site request forgery)
    with malicious data. Naive deployments of JSONP are subject to cross-site request forgery (CSRF or XSRF) attacks. Because the HTML <script> element does...
    15 KB (1,761 words) - 19:46, 11 August 2024
  • Thumbnail for JavaScript
    JavaScript (category Cross-platform software)
    browser authors. Another cross-site vulnerability is cross-site request forgery (CSRF). In CSRF, code on an attacker's site tricks the victim's browser...
    95 KB (9,309 words) - 07:54, 7 September 2024
  • Cross-site
    Cross-site may refer to the following network security exploits: Cross-site cooking Cross-site request forgery Cross-site scripting Cross-site tracing...
    194 bytes (55 words) - 04:12, 28 December 2019
  • Session fixation (section Regenerate SID on each request)
    solved to a great extent. This technique is also useful against cross-site request forgery attacks. The session identifier on most modern systems is stored...
    18 KB (2,566 words) - 11:07, 20 May 2024
  • Cross-site leaks
    only be set by the browser. Cross origin resource sharing Same origin policy Cross-site scripting Cross-site request forgery While there are other possible...
    65 KB (7,527 words) - 16:48, 5 September 2024
  • Cross-application scripting
    cross-application request forgery (CARF) is the equivalent of cross-site request forgery (CSRF) in desktop applications. In CARF the concept of “link”...
    3 KB (459 words) - 00:03, 10 December 2021