GitHub

express_csrf_study_(without csurf) - A study about mitigating CSRF manually on Node.js Express

After express csurf middleware has been deprecated with no plan to fix the security vulnerabilities, in this study, CSRF prevention is tried to implement manually with two simple examples by using ...
GitHub

aya-sahmi/express-react-csrf-protection

Ce projet est une démonstration de la mise en place de la protection CSRF (Cross-Site Request Forgery) dans une application web utilisant Express.js pour le backend et React.js pour le frontend. Le ...
Bleeping Computer

Assessing Internal Network with JavaScript, Despite Same-Origin Policy

Researchers are warning about a hacking technique that enables attacks on the local network using JavaScript on a public website. Using the victim's browser as a proxy, the code can reach internal ...