Tag
cross-site-request-forgery
Safeguard articles tagged "cross-site-request-forgery" — guides, analysis, and best practices for software supply chain and application security.
3 articles
Vulnerability Guides
What is CSRF (Cross-Site Request Forgery)?
CSRF makes a logged-in user's browser perform actions they never intended — changing an email, moving money, granting access — using the victim's own session. Here's how it works and how to stop it.
Jul 7, 20265 min read
Vulnerability Analysis
What is Cross-Site Request Forgery (CSRF)
CSRF forges an authenticated request using a victim's own session cookie. Learn how it works, real Gmail/YouTube cases, and how to detect and fix it.
Mar 31, 20267 min read
Vulnerabilities
A CSRF Example: Full Attack Walkthrough
A concrete csrf example — a bank transfer form with no anti-forgery token — showing exactly how a forged request rides in on a victim's session and what stops it.
Sep 3, 20245 min read