Log in
Linked Applications
Loading…
Spaces
Hit enter to search
Help
Online Help
Keyboard Shortcuts
Feed Builder
What’s new
Available Gadgets
About Confluence
Log in
Product Development
Search
Page tree
Browse pages
Configure
Space tools
View Page
A
t
tachments (0)
Page History
Page Information
View in Hierarchy
View Source
Export to PDF
Export to HTML
Export to Word
Hide Inline Comments
Pages
…
Product Development
Concepts
Documentation backlog
Concepts - implemented
Concept - Protect against CSRF attacks
Page Information
Title:
Concept - Protect against CSRF attacks
Author:
Christopher Zimmermann
2014-07-07
Last Changed by:
Christopher Zimmermann
2018-04-09
Tiny Link:
(useful for email)
https://wiki.magnolia-cms.com/x/BgotBQ
Export As:
Word
·
PDF
Hierarchy
Parent Page
Page:
Concepts - implemented
Labels
There are no labels assigned to this page.
Recent Changes
Time
Editor
2018-04-09T18:10:17+02
Christopher Zimmermann
View Changes
2018-04-09T18:07:21+02
Christopher Zimmermann
View Changes
2018-04-09T18:07:07+02
Christopher Zimmermann
View Changes
2018-04-09T18:06:36+02
Christopher Zimmermann
View Changes
2018-04-09T17:12:56+02
Christopher Zimmermann
View Page History
Outgoing Links
External Links (27)
https://www.owasp.org/index.php/Cross-Site_Request_Forgery_…
https://helpx.adobe.com/experience-manager/6-2/sites/develo…
https://docs.kentico.com/k9/securing-websites/developing-se…
https://world.episerver.com/documentation/class-library/?do…
en.wikipedia.org/wiki/HTTP_referer
https://web.liferay.com/community/wiki/-/wiki/Main/Authenti…
Google: csrf referer
www.vulnerable.com/redirect.asp?=http://www.links.com
demoauthor45.magnolia-cms.com/.magnolia/trees/website.html?…
https://attacker.com/badstuff
https://www.owasp.org/index.php/Open_redirect
https://www.owasp.org/index.php/Cross-Site_Request_Forgery_…
https://devnet.kentico.com/questions/regarding-csrf
https://bugs.launchpad.net/csrfurl
https://stackoverflow.com/questions/39536332/what-does-the-…
https://www.owasp.org/index.php/Cross-Site_Request_Forgery_…
smerity.com/articles/2013/where_did_all_the_http_referrers_…
https://adblockplus.org/blog/http-referer-header-wont-help-…
en.wikipedia.org/wiki/HTTP_Secure
https://bugs.launchpad.net/launchpad/+bug/560246
en.wikipedia.org/wiki/HTTP_referer#cite_note-9
hackersite.io/?http://demoauthor45.magnolia-cms.com/.magnol…
https://doc.sitecore.net/speak/speak_3/speak_3/protect_agai…
https://launchpad.net/foo
demoauthor45.magnolia-cms.com.hackersite.io
https://code.djangoproject.com/ticket/16870
https://world.episerver.com/blogs/Per-Bjurstrom/Archive/201…
Overview
Content Tools
{"serverDuration": 63, "requestCorrelationId": "92e8c1b74596e5ad"}