Cross-Site Request Forgery

Cross-site request forgery, also known as a one-click attack or session riding and abbreviated as CSRF (sometimes pronounced sea-surf) or XSRF, is a type of malicious exploit of a website whereby unauthorized commands are transmitted from a user that the website trusts. Unlike cross-site scripting (XSS), which exploits the trust a user has for a particular site, CSRF exploits the trust that a site has in a user's browser.
Posts about Cross-Site Request Forgery
  • WordPress Releases Critical Security Update, Immediate Update Recommended

    … of service when passwords are checked.Additional protections for server-side request forgery attacks when WordPress makes HTTP requests.WordPress now invalidates the links in a password reset email if the user remembers their password, logs in, and changes their email address. To get the latest version of WordPress and ensure your site isn’t vulnerable to any of the above security issues, go to your WordPress dashboard and select “Update Now”. You Might Also Like …

    Matt Southern/ Search Engine Journalin Blogging- 10 readers -
Get the top posts daily into your mailbox!