User: Password:
Subscribe / Log in / New account

Cross-site request forgery

Cross-site request forgery

Posted Oct 18, 2007 10:56 UTC (Thu) by rwmj (subscriber, #5474)
Parent article: Cross-site request forgery

Not sure about "sleeping giant". CSRF is routinely used to exploit home ADSL routers, with requests of the form With a trivial extra image you can also pick up the exploited user's public IP address.


(Log in to post comments)

Copyright © 2017, Eklektix, Inc.
Comments and public postings are copyrighted by their creators.
Linux is a registered trademark of Linus Torvalds