AnsweredAssumed Answered

150071Form Can Be Manipulated with Cross-Site Request Forgery (CSRF)

Question asked by Pragnesh Bhavsar on Feb 11, 2015

Hi All,

 

As I scanned our web application many times I came through this vulnerability again and again.Actually I seen where exactly it is happening and I provided token there which can prevent CSRF. But still it is sometime detecting vulnerability and sometimes not.

 

Another thing is that this module is showing only 2 vulnerability every time.Not detecting from whole web application. It is getting only two in one report.

 

Please help me on this how to resolve this.

 

Thank you,

Outcomes