Cenzic 232 Patent
Paid Advertising
sla.ckers.org is
ha.ckers sla.cking
Sla.ckers.org
Q and A on cross site request forgeries and breaking into sessions. It's one of the attacks that XSS enables and the attack of the future. For Session, fixations, hijacking, lockout, replay, session riding etc.... 

Current Page: 1 of 1
Results 1 - 2 of 2
6 years ago
pazwant
The problem is creating a referrer tag within iframe ? Think about the side is checking the referrer with each request, so my post data have to include referrer tag such as referrer=bla blba .. With using iframe its not possible i mean with using php-curl or java socket it may ??
Forum: CSRF and Session Info
6 years ago
pazwant
hi all, We test CSRF within post requests, however the post request have a referrer control in itself.So I create a server site post request to my domain to vulnerable domain with using PhP-Curl and java socket(servlet) however i could not set referrer header to related other domain(that i post CSRF request) how could we create this referrer header with in request ?
Forum: CSRF and Session Info
Current Page: 1 of 1