Anti-CSRF Verification Bypass
Variants:
Direct
Vector Type:
Attack
Relevance:
Generic
Layer:
Application-Level
Platforms:
Any
Target Type:
Application
Affected Mechanisms:
Anti-CSRF
Invented In:
13/07/2001
Added In:
24/12/2014
Vector Operation Method:
Abusing flaws that cause the application to ignore the csrf token verification, or otherwise bypass it, in order to execute CSRF attacks.
