I've read up on CSRF and ofund limited articles.
I have an application that users log into. The form is submitted via POST and voila they are allowed entrance into my application.
As I understand, if they were to click "Home" and google some malicious site, the site could force them into carrying out actions they otherwise wouldn't.
The malicious site would have them click a crafted link which would bring them back to my application and possibly delete a user account all through the user clicking on a link on the malicious web site. I assume having a FORM on a domain other than my own would raise errors in IE whereas the GET request would go unnoticed???
So a malicious site could use it's REFERRER code to detemrine the previous place visited, then craft a GET request which deleted user 123 and once they click on that link, BAM action taken, user deleted and now they might be in trouble.
Do I understand how this works correctly? Interesting attack, although it would not likely happen unless a disgruntled employee wanted to delete some accounts and sent his boss a link in MSN or something...
Anyways, my question...how do I prevent this from happening? What would I have to check in my Request object after I assigned $_REQUEST variable? Do I check the incoming domain is my own? Check the referer?
Cheers