Shopping Cart

No products in the cart.

Quality Clouds Community
Quality Clouds Community

Anti-CSRF Token Setting Should Be Enabled

< 1 min read

Impact Area

Security

Severity

High

Affected Element

System property

Rule ID #

SN-0198

Impact #

Cross site Request Forgery is a significant security risk that violates the integrity of the instance data. An attacker can launch the CSRF attack on any instance user by abusing the application’s trust on the instance user. With the help of social engineering attacks, a user can submit a malformed request on behalf of the attacker on the instance.

Remediation #

Set the system property “glide.security.use_csrf_token” to true to enable an extra validation step before the instance user submits a write request to the instance.

Time to fix #

15 min

References #

This rule is linked to Common Weakness Enumeration CWE-150 Improper Neutralization of Escape.

Updated on March 21, 2025
Table of contents
Was it helpful ?

Report

Harassment or bullying behavior
Contains mature or sensitive content
Contains misleading or false information
Contains abusive or derogatory content
Contains spam, fake content or potential malware

Block Member?

Please confirm you want to block this member.

You will no longer be able to:

  • See blocked member's posts
  • Mention this member in posts
  • Invite this member to groups

Please allow a few minutes for this process to complete.

Report

You have already reported this .