After learning about CSRF, I feel like probably not, because IIUC, the malicious site cannot actually view the response, they can only send responses on behalf of a user via the browser.
[link] [comments]
from hacking: security in practice https://ift.tt/RoWF01K
Comments
Post a Comment