nsecure Direct Object Access and Cross Site Request Forgery (CSRF) are serious flaws found in many Web applications. In fact, some hackers say that there isn't a Web site on the Internet that isn't vulnerable in some way to CSRF. In this, the fifth in a series on the revised OWASP Top Ten Web Application Vulnerabilities, Tom Olzak explains the nature of these two Web application weaknesses followed by recommendations for protecting Web applications from related attacks.
Apr 18, 07
Mr B Loid