[Medium Risk] Cross-Site Request Forgery (CSRF)

[jvs7]

[Medium Risk] CSRF protection is disabled for your Express app. This allows the attackers to execute requests on a user's behalf.

Location: config/appSetup.js 12