Hello,
Looking into a waf csrf alert, to see if it is legitimate or not.. I go into the documentation at this address (from the doc link for the page) https://www.akeebabackup.com/web-application-firewall --- and it appears to be a 404 page...
when looking at the exploit attempt the only info given is that it is a csrf attempt on http://domainname/index2.php
is there any other information logged on the attempt anywhere that is available to be viewed from within the atpro component?
I'm just trying to make sure that it is not a false alarm and that something should be whitelisted instead.
So far I haven't received a specific complaint from anyone on it, but want to just make sure weather it should be blocked or not.
Can you please advise?
Thanks.
H.W.
Looking into a waf csrf alert, to see if it is legitimate or not.. I go into the documentation at this address (from the doc link for the page) https://www.akeebabackup.com/web-application-firewall --- and it appears to be a 404 page...
when looking at the exploit attempt the only info given is that it is a csrf attempt on http://domainname/index2.php
is there any other information logged on the attempt anywhere that is available to be viewed from within the atpro component?
I'm just trying to make sure that it is not a false alarm and that something should be whitelisted instead.
So far I haven't received a specific complaint from anyone on it, but want to just make sure weather it should be blocked or not.
Can you please advise?
Thanks.
H.W.
