Article Topic Learning Download Q&A Programming Dictionary Game Recent Updates

简体中文(ZH-CN) English(EN) 繁体中文(ZH-TW) 日本語(JA) 한국어(KO) Melayu(MS) Français(FR) Deutsch(DE)

Home > Operation and Maintenance > Safety > body text

What does cross-site request forgery mean?

王林

Release： 2020-06-28 17:05:14

Original

5321 people have browsed it

Cross-site request forgery, often abbreviated as CSRF or XSRF, is an attack method that coerces users to perform unintentional operations on the currently logged-in web application. CSRF takes advantage of the website's trust in the user's web browser.

What does cross-site request forgery mean?

Definition

Cross-site request forgery (Cross-site request forgery), also known as one-click attack or session riding, usually Abbreviated as CSRF or XSRF, it is an attack method that coerces users to perform unintentional operations on the currently logged-in web application.

Compared with cross-site scripting (XSS), XSS takes advantage of the user's trust in the specified website, while CSRF takes advantage of the website's trust in the user's web browser.

Defense measures:

1. Check the Referer field.

2. Add verification token.

The above is the detailed content of What does cross-site request forgery mean?. For more information, please follow other related articles on the PHP Chinese website!

Related labels：

Cross-site request forgery

source：php.cn

Previous article：What are the xss defense measures? Next article：What are the CSRF defense methods?

Statement of this Website

The content of this article is voluntarily contributed by netizens, and the copyright belongs to the original author. This site does not assume corresponding legal responsibility. If you find any content suspected of plagiarism or infringement, please contact admin@php.cn

Latest Articles by Author

Create the Future: Java Programming for Absolute Beginners

2024-10-13 13:32:21
You're Not Alone: Master Python with a Supportive Community by Your Side

2024-10-12 11:58:51
From Novice to Coder: Harness the Power of Python Programming

2024-10-11 20:06:51
Think Like a Programmer: Learning the Fundamentals of Java

2024-10-11 18:59:31
Java Made Simple: A Beginner's Guide to Programming Power

2024-10-11 18:30:51
Build a Blog with PHP: A Beginner-Friendly Project

2024-10-11 15:51:51
Speak the Language of Systems: Learn C, One Line at a Time

2024-10-11 15:42:10
Data Structures and Algorithms in C: A Beginner-Friendly Approach

2024-10-11 14:41:20
Coding Without Tears: Learning C the Easy Way

2024-10-11 14:08:31
Data Analysis with Java: A Beginner's Guide to Processing Information

2024-10-11 13:42:21

Latest Issues

Is there a way to differentiate resource requesters via PHP or .htaccess Is there a way to differentiate between the browser loading the page that requested the re...

From 2024-04-04 08:37:32

0

1

404

Related Topics

More>

Popular Recommendations

Popular Tutorials

More>

Related Tutorials

Popular Recommendations

Latest courses

"Getting Started and Mastering PHP in 20 Days" Video Tutorial

342535
PHP Development_Live Sharing Class

13790
PHP zero-based video tutorial

60948

Latest Downloads

More>

Web Effects

Website Source Code

Website Materials

Front End Template

About us Disclaimer Sitemap: php.cn：Public welfare online PHP training，Help PHP learners grow quickly！