Plack-Middleware-XSRFBlock-0.0.17

Security Advisories (1)

CVE-2023-52431 (2023-07-14)

When not using signed cookies, it was possible to bypass XSRFBlock by POSTing an empty form value and an empty cookie

Why not adopt me?

This distribution is up for adoption! If you're interested then please contact the PAUSE module admins via email.

remove internal _token_generator (wasn't documented, couldn't really be changed without also changing invalid_signature, and produced a ref loop)

Block XSRF Attacks with minimal changes to your app

To install Plack::Middleware::XSRFBlock, copy and paste the appropriate command in to your terminal.

cpanm Plack::Middleware::XSRFBlock

perl -MCPAN -e shell
install Plack::Middleware::XSRFBlock

For more information on module installation, please visit the detailed CPAN module installation guide.

	Global
`s`	Focus search bar
`?`	Bring up this help dialog

	GitHub
`g` `p`	Go to pull requests
`g` `i`	Go to GitHub issues (only if GitHub is preferred repository)

Search terms
module: (e.g. module:Plugin)
distribution: (e.g. distribution:Dancer auth)
author: (e.g. author:SONGMU Redis)
version: (e.g. version:1.00)