[Catalyst] CSRF

Ashley apv at sedition.com
Tue Sep 30 17:58:15 BST 2008

On Sep 30, 2008, at 9:40 AM, Wade.Stuart at fallon.com wrote:
> Seems like a cheap way (listing a bunch of frameworks in a security  
> paper) to gain cheap traffic on your paper.

Isn't that how and why white papers are written. :)

I only skimmed the top page but I got the impression that following
best practices would circumvent (most of?) the exploits. POSTs
being required to manipulate data, specifically.


More information about the Catalyst mailing list