3 comments

[ 2.5 ms ] story [ 12.9 ms ] thread
So...CSRF tokens for everything?
a white-list solution would be a better approach for such thing