I was doing some research and I found that some developers use captcha tokens as a method to prevent CSRF attacks, I know the best way is to use CSRF-tokens but would captcha tokens solve this vulnerability?
Seems like it can’t protect against csrf.
1 Like