Resources > Publications
Cross-Site Request Forgery (CSRF in short) is a kind of a web application vulnerability which allows malicious website to send unauthorized requests to a vulnerable website using active session of its authorized users. In simple words, it’s when an “evil” website posts a new status in your twitter account on your visit while the login session is active on twitter.
Web Application Security is a vast topic
and time is not enough to cover all kind
of malicious attacks and techniques for
avoiding them, so now we will focus on
top 10 high level vulnerabilities.
Web developers work in different ways using their custom libraries and intruder prevention systems and now we will see what they should do and should not do based on best practices.