Add more extensions that can be ignored to CSRF detector

arvinddoraiswamy / mywebappscripts

A collection of all the lists, scripts and techniques I use while doing web application penetration tests.

MIT License

168 stars 80 forks source link

Closed arvinddoraiswamy closed 10 years ago

arvinddoraiswamy commented 10 years ago

For example: I was not ignoring svg files. No need to have a token there..well mostly anyway :D

arvinddoraiswamy commented 10 years ago

Fixed. Added a few more image extensions that can be ignored.