Sign in Register
Copied to clipboard

Flag this post as spam?

This post will be reported to the moderators as potential spam to be looked at


  • Danny dineen 17 posts 96 karma points
    Sep 13, 2017 @ 16:42
    Danny dineen
    0

    CSRF protection

    A security scan using Acunetix software is claiming that the login form does not have CSRF protection in version 7.6.6.

    I see the cookie token in developer tools. Is this a false positive? Can someone confirm that CSRF protection is present, and show details, if you have the time.

    Thank you.

    Copy Link
  • Danny dineen 17 posts 96 karma points
    Mar 14, 2018 @ 18:55
    Danny dineen
    0

    Tested the CSRF protection with Acunetix tools. They are indeed false positives.

    Copy Link

  • This forum is in read-only mode while we transition to the new forum.

    You can continue this topic on the new forum by tapping the "Continue discussion" link below.

Please Sign in or register to post replies