AppSec - Cross Site Request Forgery: What Attackers Don't Want You to Know
The new and upcoming cross domain request ability in Level 2 XHR and in XDR generates very interesting opportunities for both AJAX technologies and hacking communities. This new generation of technologies has security built into them from the start, and the access control component is built by...