My reaction when I saw this PHP code on reddit - http://www.reddit.com/r/PHP/comments/1l7baq/creating_a_user_from_the_web_problem/ jeudi 19 septembre 2013 à 20:55 by @krangarajan (link)
When I found CSRF token fields vulnerable to XSS. lundi 16 septembre 2013 à 19:40 by leonardzen- @leobuonsanti