This project is read-only.
1
Vote

Indirect object references and CSRF vulnerability

description

Hi, as described at Nice business logic vulnerability and CSRF on the ASP.NET MVC Design Patterns book sample, I found a couple security issues with the current version of the code.

Note I upgraded the code to .NET 4.0 and ASP.NET MVC 4.0 (running on VS 2010) and pushed the code to https://github.com/o2platform/Fork_AgathasStorefront_ASPNET_MVC

comments