I think you should revisit this post and change the form method from GET to POST. A form with the GET method has no CSRF protection whatsoever and it is easily exploitable.
Yeah, But I am introducing that concept in my next article, here just to understand how actually data flow from user interface to backend, purposefully I kept it as GET, not to mess with @csrf concept at this stage itself;
:)
Thank You
For further actions, you may consider blocking this person and/or reporting abuse
We're a place where coders share, stay up-to-date and grow their careers.
I think you should revisit this post and change the form method from GET to POST. A form with the GET method has no CSRF protection whatsoever and it is easily exploitable.
Yeah, But I am introducing that concept in my next article, here just to understand how actually data flow from user interface to backend, purposefully I kept it as GET, not to mess with @csrf concept at this stage itself;
:)
Thank You