Security·4,690 discussions

[birdmantd]

Our programmers don’t do their jobs well and can’t find a vulnerable CSRF

Locked

Tags: Google, Piracy, Security

Hello. Our team is now actively engaged in gambling, and it is of course a good niche, but to develop sites on it quite so dangerous because there is a lot of competition. We have repeatedly said that our users are complaining about XSS vulnerabilities and it is very strange. They say that protection from CSRF is present, but I do not think so even though I am not a programmer. Here is our site (internet link removed by moderator) and it seems to me that even the untrained eye can see that something is wrong here. Sorry if you see a duplicate, but I can’t find my thread on the forum.

• This topic was modified 9 months, 2 weeks ago by birdmantd.

Topic

Re: CSRF

In reply to Our programmers don’t do their jobs well and can’t find a vulnerable CSRF

Then it’s time to find a company or freelancer to fix it.

Preferably someone who is willing to educate your lead programmer ‘on the job’, by coaching him while doing it together.

Reply To: Our programmers don’t do their jobs well and can’t find a vulnerable CSRF

In reply to Our programmers don’t do their jobs well and can’t find a vulnerable CSRF

Whoa there, looks like your team’s running into some trouble with their gambling site. CSRF vulnerabilities are no joke, so it’s definitely time to bring in some backup.

[Author]

Replies