“CSRF跨站伪造攻击漏洞”在CWE中被编号为CWE-352: Cross-Site Request Forgery (CSRF)
PCI v3.2-6.5.9, CAPEC-62, CWE-352, HIPAA-164.306(a), ISO27001-A.14.2.5, WASC-9, OWASP 2013-A8, OWASP 2017-A5 Low Cross-site Request Forgery in Login Form PCI v3.2-6.5.9, CAPEC-62, CWE-352, HIPAA-164.306(a), ISO27001-A.14.2.5, WASC-9, OWASP 2013-A8, OWASP 2017-A5...
CWE 352 Cross-Site Request Forgery (CSRF) Flaw Category: Authentication Issues Effort to Fix: 4 - Simple design error. Requires redesign and up to 5 days to fix. Description: It is possible to trick a user into executing potentially dangerous actions against the target site due to a lack o...
We scan one of our ASP.Net Core 3.1 MVC Project using Veracode Greenlight, and actually It's weird that I got a CWE-352 Cross Site Request Forgery (CSRF) on the Login page method on my AccountController复制 [HttpGet] [Route("Login")] public ActionResult Login() { return View();...
I'd recommend reading through the tag we have for this flaw category to review other Community answers: https://community.veracode.com/s/topic/0TO2T000000c59iWAA/cwe-352 Thank you, Boy Baukema Expand Post LikeReply Log In to AnswerTopics...
制造商 : Maxim Integrated 封装/规格 : DICE 产品分类 : Analog Switch ICs Datasheet: MAX352C/D Datasheet (PDF) RoHs Status: Lead free/RoHS Compliant 库存: 0 Share: Pinterest LinkedIn WhatsApp Facebook Line X 分享 对比产品 数量 加入BOM 询价 ...