Cross-Site Request Forgery attacks are not feasible anymore

Cookies are typically used to keep users logged into websites. Previously cookies were sent with any requests. For example, the browser used to send the cookies when a web site requested an image from another web site or with a POST request…

--

--

Get the Medium app

A button that says 'Download on the App Store', and if clicked it will lead you to the iOS App store
A button that says 'Get it on, Google Play', and if clicked it will lead you to the Google Play store