[Owasp-delhi] Please clarify
s.parmendra at gmail.com
Mon Feb 2 06:05:10 EST 2009
Please clarify the belowmentioned point:
"XSS flaws is susceptible to CSRF because a CSRF attack can exploit the XSS
flaw to steal any non-automatically submitted credential that might be in
place to protect against a CSRF attack"
Please mention the scenerio where both the vulnerabilities are in action....
Thanks and Regards:
Indian Computer Emergency Response Team (CERT-In)
Ministry of Information Technology
Government of India
6 C.G.O Complex
-------------- next part --------------
An HTML attachment was scrubbed...
More information about the Owasp-delhi