Search form widget security issues

  • I have used “search-form” widget of WordPress in my header for my site related topics. My site is scanned by zap tool, it shows “Absence of Anti-CSRF Tokens” for search box form.

    Note: My site search has no submit button. It shows output just by clicking “enter” button.

    Please share the respective code to generate csrf token and how to verify it. And please share whether we need csrf token verification for search box, which uses “Get” request alone. However, please share the code as well to solve it.

    Regards,

    Bharathi Viswa.

Viewing 1 replies (of 1 total)
Viewing 1 replies (of 1 total)
  • The topic ‘Search form widget security issues’ is closed to new replies.

Tags