Rails Security: Eliminating CSRF and XSS Vulnerabilities

Written by mikenath223 | Published 2020/03/24
Tech Story Tags: ruby-on-rails | rails-security | webdev | cyber-security | security | rails | xss-vulnerabilities | hackernoon-top-story

TLDR In this article, we will discuss the various attack methods that make your rails app vulnerable to Cross-Site Request Forgery(CSRF) and XSS (XSS) exploits. CSRF occurs in an authenticated session when there is an existing browser-server trust. XSS is a form of injection attack that doesn’t require authentication and happens when the proper measures were not made on the backend to validate or escape inputted values this form of attack gives the attacker direct access to all elements on the page.via the TL;DR App
no story
Written by mikenath223 | I write code, run tests, deploy. iterate...
Published by HackerNoon on 2020/03/24
ABOUTHow hackers start their afternoons. We publish tech stories and build publishing software.

READEntirely free library read by hundreds of millions to learn anything about any technology.

WRITEHackerNoon elevates quality technology writing far and wide across the interwebs.

PARTNERHackerNoon works directly with tech companies to place ads by content relevancy