Page tree
Title: Concept - Protect against CSRF attacks  
Author: Christopher Zimmermann 2014-07-07
Last Changed by: Christopher Zimmermann 2018-04-09
Tiny Link: (useful for email) https://wiki.magnolia-cms.com/x/BgotBQ
Export As: Word · PDF  
Hierarchy
Parent Page
    Page: Concepts - implemented
Labels
There are no labels assigned to this page.
Outgoing Links
External Links (27)
    https://www.owasp.org/index.php/Cross-Site_Request_Forgery_…
    https://helpx.adobe.com/experience-manager/6-2/sites/develo…
    https://docs.kentico.com/k9/securing-websites/developing-se…
    https://world.episerver.com/documentation/class-library/?do…
    en.wikipedia.org/wiki/HTTP_referer
    https://web.liferay.com/community/wiki/-/wiki/Main/Authenti…
    Google: csrf referer
    www.vulnerable.com/redirect.asp?=http://www.links.com
    demoauthor45.magnolia-cms.com/.magnolia/trees/website.html?…
    https://attacker.com/badstuff
    https://www.owasp.org/index.php/Open_redirect
    https://www.owasp.org/index.php/Cross-Site_Request_Forgery_…
    https://devnet.kentico.com/questions/regarding-csrf
    https://bugs.launchpad.net/csrfurl
    https://stackoverflow.com/questions/39536332/what-does-the-…
    https://www.owasp.org/index.php/Cross-Site_Request_Forgery_…
    smerity.com/articles/2013/where_did_all_the_http_referrers_…
    https://adblockplus.org/blog/http-referer-header-wont-help-…
    en.wikipedia.org/wiki/HTTP_Secure
    https://bugs.launchpad.net/launchpad/+bug/560246
    en.wikipedia.org/wiki/HTTP_referer#cite_note-9
    hackersite.io/?http://demoauthor45.magnolia-cms.com/.magnol…
    https://doc.sitecore.net/speak/speak_3/speak_3/protect_agai…
    https://launchpad.net/foo
    demoauthor45.magnolia-cms.com.hackersite.io
    https://code.djangoproject.com/ticket/16870
    https://world.episerver.com/blogs/Per-Bjurstrom/Archive/201…