Advanced CSRF and Stateless Anti-CSRF - owasp
Advanced CSRF and Stateless Anti-CSRF - owasp
Advanced CSRF and Stateless Anti-CSRF - owasp
You also want an ePaper? Increase the reach of your titles
YUMPU automatically turns print PDFs into web optimized ePapers that Google loves.
Double Submit<br />
(<strong>CSRF</strong> protection)<br />
cookie ≠<br />
request parameter<br />
Cannot read the<br />
anti-<strong>CSRF</strong> cookie to<br />
include it as parameter