Forum Discussion

Nimbostratus

Apr 20, 2017

CSRF javascript is not injected properly

Dear all,

I have configured the csrf protection in my policy but it seems that the javascript injected only if i refresh the page. In case there is no any uri in csrf policy, the javascript is injected in all uris? Is the csrf token stored in a TS cookie?

Thank you in advance.!

ASM Advanced WAF

security

No RepliesBe the first to reply

Recent Discussions

AS3 Limitations
Mar 15, 2025
Anesh
Diameter iRules attachment?
Mar 14, 2025
symtexxd
Help needed with iRule (connection closed log )
Mar 14, 2025
Vicstick0810
Use of SSL Decryption.
Mar 14, 2025
RockBD
VLAN Failsafe Functionality
Mar 14, 2025
Excel

Under Attack? F5 Will Help You.
Contacting F5 Support?

DevCentral Quicklinks

* Getting Started on DevCentral
* Community Guidelines
* Community Terms of Use / EULA
* Community Ranking Explained
* Community Resources
* Contact the DevCentral Team
* Update MFA on account.f5.com

Discover DevCentral Connects

* Podcasts
* Social Channels
* Video Streaming

Forum Discussion

CSRF javascript is not injected properly

Recent Discussions

AS3 Limitations

Diameter iRules attachment?

Help needed with iRule (connection closed log )

Use of SSL Decryption.

VLAN Failsafe Functionality

Related Content

Javascript injecting systems effect on web application end users - a scenario review

WAF evasion techniques for Command Injection

AppDynamics EUM JavaScript Injection for Selective URLs

Agentic AI with Social Engineering, JavaScript Stealer and the Silent Lynx

AI Security : Prompt Injection and Insecure Output Handling.

ABOUT DEVCENTRAL

RESOURCES

SUPPORT

PARTNERS