Y
Hacker News
new
|
ask
|
show
|
jobs
by
tptacek
4693 days ago
Just in case you weren't clear on this already: CSRF works just fine against POST endpoints. Think Javascript.