# XSS and CSRF: Programmers Prepare, Users Beware

By Ben Ramsey

- **Date:** July 7, 2005
- **Event:** [Atlanta PHP User Group](https://web.archive.org/web/20191112144438/http://atlantaphp.org/july-2005-meeting/)
- **Venue:** New Horizons Learning Center
- **City:** Atlanta, GA, US

---

- [View slides](https://speakerdeck.com/ramsey/xss-and-csrf-programmers-prepare-users-beware-atlanta-php-july-2005)
- [Download PDF](https://files.benramsey.com/talks/2005/atlantaphp/atlphp-xss-csrf.pdf)

---

Cross-site scripting (XSS) and cross-site request forgeries (CSRF) are often confused as being one and the same, but this misconception can lead to disastrous results. In this talk, you will encounter each of these attacks through examples and learn to distinguish between them. You will also examine secure coding practices and techniques for prevention.