Open Anemone95 opened 5 years ago
http://anemone.top/csrf-CSRF%E6%88%90%E5%9B%A0%E3%80%81%E6%94%BB%E5%87%BB%E5%92%8C%E9%98%B2%E5%BE%A1/
CSRF成因GET型脆弱代码存在CSRF的GET型请求如下: 1234567891011121314151617181920@app.route('/get', methods=['GET'])def get(): if session.get('user','')=='admin': ret = "Admin do something!" else: re
http://anemone.top/csrf-CSRF%E6%88%90%E5%9B%A0%E3%80%81%E6%94%BB%E5%87%BB%E5%92%8C%E9%98%B2%E5%BE%A1/
CSRF成因GET型脆弱代码存在CSRF的GET型请求如下: 1234567891011121314151617181920@app.route('/get', methods=['GET'])def get(): if session.get('user','')=='admin': ret = "Admin do something!" else: re