Forum Discussion

Nimbostratus

Apr 20, 2017

CSRF javascript is not injected properly

Dear all,

I have configured the csrf protection in my policy but it seems that the javascript injected only if i refresh the page. In case there is no any uri in csrf policy, the javascript is injected in all uris? Is the csrf token stored in a TS cookie?

Thank you in advance.!

ASM Advanced WAF

security

No RepliesBe the first to reply

DevCentral Quicklinks

* Getting Started on DevCentral
* Community Guidelines
* Community Terms of Use / EULA
* Community Ranking Explained
* Community Resources
* Contact the DevCentral Team
* Update MFA on account.f5.com

Discover DevCentral Connects

* Podcasts
* Social Channels
* Video Streaming

GitHub Awesome-F5

Forum Discussion

CSRF javascript is not injected properly

Welcome! a la Communidad DevCentral LATAM de F5!

The New F5 Certified BIG-IP Administrator Certification Exams Now Live

Recent Discussions

Can I use F5 Big-IP WAF as HoneyPot

ssh on slot1 failed f5 viprion

SSH forward proxy

Multiple Default Gateways

ASM Sec-CH-UA-Full-Version-List backquote in Header

Related Content

Javascript injecting systems effect on web application end users - a scenario review

WAF evasion techniques for Command Injection

Mitigating OWASP Web Application Risk: Injection exploits using F5 BIG-IP

AppDynamics EUM JavaScript Injection for Selective URLs

Serverside SNI injection iRule

ABOUT DEVCENTRAL

RESOURCES

SUPPORT

PARTNERS