cross-site request forgery (csrf)
Cross-Site Request Forgery (CSRF) is a type of web security vulnerability where an attacker tricks a user's web browser into sending malicious requests that unintentionally perform actions on a different website which the user is authenticated for, potentially leading to unauthorized actions or data breaches.
Requires login.
Related Concepts (18)
- client-side code injection
- command injection
- cross-site scripting (xss)
- escaping user input
- html injection
- injection attacks
- input validation
- insecure direct object references
- local file inclusion (lfi)
- malicious input
- oauth or openid vulnerabilities
- ruby code injection
- secure coding practices
- server-side request forgery (ssrf)
- software vulnerability
- web application exploitation
- web vulnerabilities
- xml injection
Similar Concepts
- cross-site request forgery (csrf) attacks
- cross-site request forgery (csrf) authentication bypass
- cross-site request forgery (csrf) prevention
- cross-site request forgery (csrf) vulnerabilities
- cross-site scripting
- cross-site scripting (xss) attacks
- cross-site scripting (xss) authentication bypass
- cross-site scripting (xss) payload generation
- cross-site scripting (xss) prevention
- cross-site scripting (xss) via file upload
- cross-site scripting (xss) vulnerabilities
- csrf (cross-site request forgery)
- server side request forgery (ssrf)
- server-side request forgery (ssrf) via file upload
- server-side request forgery (ssrf) vulnerabilities