CSRF protection issue
-
I have added a MailChimp Embedded form on my company website. When I scan the website through Acunetix, I found a vulnerabilities issue ‘HTML form without CSRF protection’.
Alert: HTML form without CSRF protection
Description: Cross-Site Request Forgery (CSRF, or XSRF) is a vulnerability wherein an attacker tricks a victim into making a request the victim did not intend to make. Therefore, with CSRF, an attacker abuses the trust a web application has with a victim’s browser. Acunetix found an HTML form with no apparent anti-CSRF protection implemented. Consult the ‘Attack details’ section for more information about the affected HTML form.
Page URL: https://imerit.net/blog/How can I fix the problem. Please help.
- The topic ‘CSRF protection issue’ is closed to new replies.