Hacker News new | past | comments | ask | show | jobs | submit login

This exposes a weakness in the "double-submit cookie" CSRF defense technique.

https://www.owasp.org/index.php/Cross-Site_Request_Forgery_(...




Consider applying for YC's Spring batch! Applications are open till Feb 11.

Guidelines | FAQ | Lists | API | Security | Legal | Apply to YC | Contact

Search: