[Owasp-board] Wiki en Espanol?

Bil Corry bil.corry at owasp.org
Mon Apr 21 23:58:06 UTC 2014

It's trivial to CSRF the language to Spanish.  I created a page to show it (it requires clicking the link in the wiki page, but any site can do it silently):




My favorite demo of CSRF used to be changing the Google search language to Klingon before they added CSRF protection.


- Bil


From: owasp-board-bounces at lists.owasp.org [mailto:owasp-board-bounces at lists.owasp.org] On Behalf Of Michael Coates
Sent: Saturday, April 19, 2014 2:05 AM
To: Josh Sokol
Cc: OWASP Foundation Board List
Subject: Re: [Owasp-board] Wiki en Espanol?


I had this happen the other day too. I can't reproduce it though either.

On Apr 18, 2014 3:08 PM, "Josh Sokol" <josh.sokol at owasp.org> wrote:

It was Firefox.  I clicked on where it says "English" in the language settings on the left and it fixed it for me.  Now I can no longer reproduce (I'm assuming it set a cookie or something) and other browsers aren't showing the issue.  Not sure what was up.  It's fine for me now, just wondering if others might be experiencing a similar issue.



On Fri, Apr 18, 2014 at 5:04 PM, Dennis Groves <dennis.groves at owasp.org> wrote:

Hi Josh,


I can not reproduce this issue on OWASP.org. However, I did have a problem like this with chrome the other day where it kept translating everything I tried to visit into Portuguese. If you are using chrome? You can try restarting it, that worked for me.






On Fri, Apr 18, 2014 at 2:40 PM, Josh Sokol <josh.sokol at owasp.org> wrote:

I was just on the owasp.org site and it looks like somehow the default language got changed from English to Spanish.  It changes to English for me when I log in, but if I am not logged in, it's all in Spanish.  Any idea what's up?



Owasp-board mailing list
Owasp-board at lists.owasp.org



Dennis Groves <http://about.me/dennis.groves> , MSc

Email me, <mailto:dennis.groves at owasp.org>  or schedule a meeting <http://goo.gl/8sPIy> .

This email is licensed under a CC BY-ND 3.0 <http://creativecommons.org/licenses/by-nd/3.0/deed.en_GB>  license.

Stand up for your freedom to install free software. <http://www.fsf.org/campaigns/secure-boot/statement> 
Please do not send me Microsoft Office/Apple iWork documents. 
Send OpenDocument <http://fsf.org/campaigns/opendocument/>  instead!

 <http://www.owasp.org/> Image removed by sender.


Owasp-board mailing list
Owasp-board at lists.owasp.org

-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.owasp.org/pipermail/owasp-board/attachments/20140422/b4804110/attachment.html>
-------------- next part --------------
A non-text attachment was scrubbed...
Name: image001.jpg
Type: image/jpeg
Size: 440 bytes
Desc: not available
URL: <http://lists.owasp.org/pipermail/owasp-board/attachments/20140422/b4804110/attachment.jpg>

More information about the Owasp-board mailing list