Cross-site request forgery - Lab : CSRF vulnerability with no defenses
Cross-site request forgery - Lab : CSRF where token validation depends on request method
Cross-site request forgery - Lab : CSRF where token validation depends on token being present
Cross-site request forgery - Lab : CSRF where token is not tied to user session
Cross-site request forgery - Lab : CSRF where token is tied to non-session cookie
Cross-site request forgery - Lab : CSRF where token is duplicated in cookie
Cross-site request forgery - Lab : CSRF where Referer validation depends on header being present
Cross-site request forgery - Lab : CSRF with broken Referer validation