in reply to Re: Is your web application really secure? ("CSRF")
in thread Is your web application really secure? ("CSRF")
i tried this out with a GET-form instead of post. even that works. so
you can put anything into someones amazon shopping cart even without javascript. =(
In Section
Meditations