Articles related to csrf
Cross-Site Request Forgery (CSRF) - Ruby - About.com
Exploitation of a website utilizing the trust the site has for a certain user.
CSRF - Cross-site Request Forgery - Ruby - About.com
There are two huge vulnerabilities in all web applications and web sites, and those are XSS and CSRF. What is this alphabet soup? XSS is cross-site scripting, ...
The Intent and Impact of Cross-Site Request Forgery (CSRF) Attacks
There are a number of reasons that someone would want to launch a CSRF attack and each has its own unique impact. If your Ruby on Rails code is vulnerable ...
3 Countermeasures to Protect Ruby From CSRF Attacks - About.com
To protect against CSRF, Web developers have to go the extra mile. Of course, as with any vulnerabilities, doing things correctly from the get-go is extremely ...
CSRF With XSS - Ruby - About.com
CSRF attacks on your site can also occur in conjunction with XSS breaches. The severity of the CSRF attack is dependent on the severity of the XSS ...
Understanding Cross-Site Request Forgery (CSRF)
Cross-Site Request Forgery, aka CSRF (pronounced Sea-Surf), is a security vulnerability that goes by many names and which can affect your website and Ruby ...
CSRF Without XSS - Ruby - About.com
CSRF attacks are similar in nature to Cross-Site Scripting (XSS) attacks and can occur in conjunction with an XSS attacks, but they don't always go hand-in-hand ...
Securing Ruby Code - About.com
Running Ruby programs or Ruby on Rails server software? Take a look at this analysis of software vulnerable to security breaches and CSRF attacks because ...
Dealing With Ruby Vulnerabilities: Pay Attention to Idempotence
Since the same protection against CSRF attacks can be achieved manually through careful attention to idempotence and the post_only before filter, it may not be ...
Exploitation of Security Vulnerabilities in Ruby Code - About.com
Does your Ruby code have security vulnerabilities? Take a look at this analysis of a CSRF attack with XSS and Filtering to see if your site might be at risk.