CSRF-Protector-PHP
CSRF-Protector-PHP copied to clipboard
mebjas
CSRF Protector library: standalone library for CSRF mitigation
In the case when the CSRFP token is not at the beginning of the cookie header, the current regex will fail to detect the token correctly because of wrong slash...
This resolves conflicts when clicking an icon inside a link object.
I didn't see anywhere how to implement this only in forms ? I read the whole doc And check the src found this ob_handler but this only rewrite body to...
This library is not working when i put my project directly in the root directory. Root Directory(public_html) - Not working in this scenario csrf-lib(Library in root directory) file1->project file direct...
**Is your feature request related to a problem? Please describe.** A clear and concise description of what the problem is. Ex. I'm always frustrated when [...] **Describe the solution you'd...
**Describe the bug** csrfprotector javascript code fails to get the csrf token from the cookie because it is httponly:true, cannot use it. should we recommend that the field httponly be...
This should fix #147 this change is needed if submit actions are redefined otherwise createHiddenInputElement() will not be called on submit
**Describe the bug** Certain Chrome Extensions (I only found LastPass) conflict with this Plugin at POST. The Token is not set as a POST value, so the Token verification always...
 csfrprotector.php -> getCurrentUrl() line 590 : ``` return $request_scheme . '://' . $_SERVER['HTTP_HOST'] . $_SERVER['PHP_SELF']; ``` Tested on Apache/2.4.46 (Win64) PHP version: 8.0.3
I am trying to configure this project. it works on my local pc but it doesn't work on my server. return "403 Access Forbidden by CSRFProtector!". I am using ubuntu...
