Top 10 2013-A8-Cross-Site Request Forgery (CSRF)

= TEMPORARY PLACEHOLDER for 2013 T10 =

blank. blank blank blank blank

blank

blank
 * 1) blankBullet1
 * 2) blankBullet2

blank blank code blank http://example.com/app/accountView?id= ' or '1'='1 blank


 * OWASP SQL Injection Prevention Cheat Sheet
 * ESAPI Encoder API


 * CWE Entry 77 on Command Injection
 * CWE Entry 89 on SQL Injection