|
|
|
|
|
|
by t-writescode
183 days ago
|
|
|
Most of them. You can send in a cookie and a field and compare. CSRF is about arbitrary clicks in emails and such that automagic your logged-in-session cookies to the server. If you require an extra field and compare it, you’re fine |
|
|