Open ctmbl opened 2 years ago
Context: I was just wondering, is the website vulnerable to CSRF?
Problem: Does this attack scenario would work:
Nothing is done in the source code to protect the blog against these attacks but maybe the framework used do it already?
Other: Another minor question, how long is the website cookie valid?
Context: I was just wondering, is the website vulnerable to CSRF?
Problem: Does this attack scenario would work:
Nothing is done in the source code to protect the blog against these attacks but maybe the framework used do it already?
Other: Another minor question, how long is the website cookie valid?