Jump to navigation Jump to search
CWE-352: Cross-Site Request Forgery (CSRF)
CSRF (also called XSRF) attacks consist of tricking a legitimate user into activating a request to a web site, transparently and unwittingly.
|Consequences||Data loss, Code execution|
|Ease of Detection||Moderate|