ico-arrow-big-left

gAudit: Merge CSRF and XSS prevention from one submission to another

Key Information

Register
Submit
The challenge is finished.
Show Deadlines

Challenge Overview


1) Port the ��CSRF prevention code (csrf token validation) from either guarav23 or vishesh91 branches INTO the MASTER branch

2) Fix at least one DOM-based XSS vulnerability in header.jsp (~lines 109-123). ��Ideally you'd clean this up a bit too, since the retrieval of the parameters seems clunky in general.

make clean commits that are easy to understand (no major reformatting, etc)

Payments

Topcoder will compensate members in accordance with our standard payment policies, unless otherwise specified in this challenge. For information on payment policies, setting up your profile to receive payments, and general payment questions, please refer to ‌Payment Policies and Instructions.

REVIEW STYLE:

Final Review:

Community Review Board
?

Approval:

User Sign-Off
?

ID: 30037531