GetSimple Support Forum
nonce functions - Printable Version

+- GetSimple Support Forum (http://get-simple.info/forums)
+-- Forum: GetSimple (http://get-simple.info/forums/forumdisplay.php?fid=3)
+--- Forum: Developer Discussions (http://get-simple.info/forums/forumdisplay.php?fid=8)
+--- Thread: nonce functions (/showthread.php?tid=3649)



nonce functions - Carlos - 2012-10-04

Most (if not all) plugins that have a backend do not make use of GS get_nonce, check_nonce... functions.
Should they?
Does this make GS+plugins less safe?


nonce functions - shawn_a - 2012-10-04

I think it would be harder to target a csrf attack on a plugin.
You really have to know your victim has a high probability of having it installed