Question:What is the best measure one can take to prevent a cross-site request forgery?
A Disallow requests from outside hosts B Add a secret token to all form submissions C Turn off allow_url_fopen in php.ini D Filter all output E Filter all input
+ AnswerB
+ Report