WebGoat

dubey/WebGoat

Fork 0

Commit Graph

Author	SHA1	Message	Date
cam.morris	d2a6a2b272	This change includes two additional CSRF lessons. One for by-passing a prompt (showing why prompts don't work). The second for by-passing CSRF tokens when XSS exists. It also modifies the existing CSRF lesson so that the lesson can be extended and used by the two new lessons. git-svn-id: http://webgoat.googlecode.com/svn/trunk/webgoat@386 4033779f-a91e-0410-96ef-6bf7bf53c507	2009-10-23 21:23:17 +00:00
rogan.dawes	b0b94c4688	Miscellaneous bug fixes divide by zero, inaccurate discount and totals, reflection of user input git-svn-id: http://webgoat.googlecode.com/svn/trunk/webgoat@273 4033779f-a91e-0410-96ef-6bf7bf53c507	2008-01-14 14:02:11 +00:00

Author

SHA1

Message

Date

cam.morris

d2a6a2b272

This change includes two additional CSRF lessons. One for

by-passing a prompt (showing why prompts don't work).  The second for
by-passing CSRF tokens when XSS exists. 

It also modifies the existing CSRF lesson so that the lesson
can be extended and used by the two new lessons.


git-svn-id: http://webgoat.googlecode.com/svn/trunk/webgoat@386 4033779f-a91e-0410-96ef-6bf7bf53c507

2009-10-23 21:23:17 +00:00

rogan.dawes

b0b94c4688

Miscellaneous bug fixes

divide by zero, inaccurate discount and totals, reflection of user input


git-svn-id: http://webgoat.googlecode.com/svn/trunk/webgoat@273 4033779f-a91e-0410-96ef-6bf7bf53c507

2008-01-14 14:02:11 +00:00

2 Commits