| 释义 |
cross-site request forgery - 跨站请求伪造:指挟制用户在当前已登录的Web应用程序上执行非本意的操作的攻击方法。
1 ?跨站请求伪造 ...????跨站请求伪造(Cross-Site Request Forgery,CSRF)是一种使已登录用户在不知情的情况下执行某种动作的攻击。 2 ?跨站点请求伪造 跨站点请求伪造(Cross-Site Request Forgery)是一种互联网上广泛存在的网络攻击,它通过第三方伪造用户请求来欺骗服务器端,达到冒充用户身份、行使用户权利的目的. 3 ?攻击 getParameter('userId')在Webx项目中,防止CSRF攻击(Cross-site request forgery,跨站请求伪造),在form表单..
- 1
Helpers added to prevent cross-site request forgery attacks. - 2
Jacob gave examples of some of the vulnerabilities like Cross-Site Scripting (XSS), Cross-Site Request Forgery (CSRF), HTTP Response Splitting, Session Fixation, and SQL Injection. Jacob对其中的一些弱点给出了示例,像跨站点脚本攻击(XSS)、跨站点伪造请求(CSRF)、HTTP响应分割、会话固定攻击以及SQL注入攻击等等。 - 3
In addition to handling traditional threats, a mashup application or web page must address such issues as cross-site scripting (XSS) and cross-site request forgery (CSRF), among others. 除了处理传统威胁外,混搭应用程序或web页面必须解决跨站点脚本编写(XSS)和跨站点请求伪造(CSRF)等问题。
|