XSRF issue exists @ WebGoatCoins/ProductDetails.aspx.cs in branch master
Method btnSave_Click at line 37 of WebGoatCoins\ProductDetails.aspx.cs gets a parameter from a user request from Value. This parameter value flows through the code and is eventually used to access application state altering functionality. This may enable Cross-Site Request Forgery (XSRF).
XSRF issue exists @ WebGoatCoins/ProductDetails.aspx.cs in branch master
Method btnSave_Click at line 37 of WebGoatCoins\ProductDetails.aspx.cs gets a parameter from a user request from Value. This parameter value flows through the code and is eventually used to access application state altering functionality. This may enable Cross-Site Request Forgery (XSRF).
Severity: Medium
CWE:352
Checkmarx
Lines: 41
Code (Line #41):