Vol.3 No.2
Year: 2014
Issue : Mar-May
Title : Cross-Site Request Forgery: Vulnerabilities and Defenses
Author Name : Bharti Nagpal, Naresh Chauhan , Nanhay Singh
Synopsis :
Cross-Site Request Forgery (CSRF) attack occurs when a malicious web site causes a user’s web browser to perform an unwanted action on a trusted site. These attacks have been called the “sleeping giant” of web-based vulnerabilities, because many sites on the internet fail to protect against them because they have been largely ignored by the web development and security communities. The impact of a successful cross-site request forgery attack is limited to the capabilities exposed by the vulnerable application. This attack could result in a transfer of funds, changing a password, or purchasing an item in the user's context.
For more details:
No comments:
Post a Comment