跨站请求伪造 Cross-site request forgery
(重定向自CRSF)
跨站请求伪造(英语:Cross-site request forgery),也被称为 one-click attack 或者 session riding,通常缩写为 CSRF 或者 XSRF, 是一种挟制用户在当前已登录的Web应用进程上执行非本意的操作的攻击方法。 跟跨网站脚本(XSS)相比,XSS 利用的是用户对指定网站的信任,CSRF 利用的是网站对用户网页浏览器的信任。
CRSF
中文百科
英语百科
Cross-site request forgery 跨站请求伪造
(重定向自CRSF)
Cross-site request forgery, also known as one-click attack or session riding and abbreviated as CSRF (sometimes pronounced sea-surf) or XSRF, is a type of malicious exploit of a website where unauthorized commands are transmitted from a user that the website trusts. Unlike cross-site scripting (XSS), which exploits the trust a user has for a particular site, CSRF exploits the trust that a site has in a user's browser.
- tax provision的意思
- tax purposes的意思
- tax put的意思
- tax pyramiding的意思
- Tax rate的意思
- tax rate application的意思
- tax rate limit的意思
- tax rate reductioin的意思
- tax rate reduction的意思
- Tax rates的意思
- tax rate schedule的意思
- tax rate structure的意思
- tax rate stucture的意思
- tax ratio的意思
- Tax rebate的意思
- tax rebellion的意思
- tax receipt的意思
- tax receipts的意思
- tax receivable的意思
- tax receivable current的意思
- tax receiver的意思
- tax reduction的意思
- tax refeorm的意思
- tax refeorm act的意思
- tax referece price的意思