SBDavid
Feb 4th, 2013
Feb 4th, 2013
Cross-site Request Forgery (XSRF) Attacks
Cross-site Request Forgery (XSRF) Attacks
Cross-site request forgeries (XSRF) occur when a malicious user exploits the trust between a website and a user’s browser. By exploiting that trust, malicious users can execute unauthorized commands on a website.
XSRF attacks rely on 2 items:
Access to authentication credentials
Surreptitious execution of a command via a URL
For more information about XSRF attacks, as well as a few examples, you can visit this Wikipedia page.
http://en.wikipedia.org/wiki/XSRF
