Cross Site Request Forgery(CSRF)Vulnerabilities

3 years ago 177
BOOK THIS SPACE FOR AD
ARTICLE AD

What is CSRF? How CSRF vulnerabilities work explained in simplest way possible.

noobdog

Hey there, How are you? I hope you’re having a great day.

Cross-Site Request Forgery (CSRF) is an attack which forces the users to perform unwanted / confidential actions on an authenticated web platform.

Attackers tricks the users of web applications to change the data of it’s account by making them click on a malicious URLs. The data can be like email address, bank details, phone numbers, etc.

To explain it in simple words. Suppose there is a server which is hosting a website named https://example.com

The server will only allow request of https://example.com, If the request is coming from other source, the server will deny it.

Now your mind would be raising a question that how will the server know if the request is valid or not. So, to verify the request server will check for the CSRF token in the request. If the CSRF token is missing or mismatched, the server will deny the request.

Read Entire Article