Outer Web | Explore

Explore >> Select a destination

You are here		www.sjoerdlangkemper.nl Preventing CSRF with the same-site cookie attribute
\|	\|	blog.kotowicz.net XSS-Track now steals your uploaded files with HTML5 power!	6.6 parsecs away Travel
\|	\|	A blog on security, malware, cryptography, pentesting, javascript, php and whatnots	6.6 parsecs away Travel
\|	\|	timtech.blog CSRF When You Least Expect It.	2.4 parsecs away Travel
\|	\|	Fun with Cross-Site Request Forgery (CSRF) in a creative Web Timing Attack scenario, highlighting the risks inherent to SameSite=None session cookies.	2.4 parsecs away Travel
\|	\|	blog.plataformatec.com.br Improve remember me cookie expiration in Devise (CVE-2015-8314) « Plataformatec Blog	3.2 parsecs away Travel
\|	\|	A security bug (CVE-2015-8314) has been reported in Devise's remember me system. Devise implements the "Remember me" functionality by using cookies. While this functionality works across multiple devices, Devise ended-up generating the same cookie for all devices. Consequently, if a malicious user was able to steal a remember me cookie, the cookie could be used	3.2 parsecs away Travel
\|	\|	sergioprado.blog A new blog about embedded systems - sergioprado.blog	21.3 parsecs away Travel
\|		This is going to be my new blog about embedded systems development.	21.3 parsecs away Travel