Protection Against Exploits This section discusses Servlet specific support for Spring Security’s protection against common exploits. Section Summary Cross Site Request Forgery (CSRF) for Servlet Environments Security HTTP Response Headers HTTP HttpFirewall SAML2 Metadata Cross Site Request Forgery (CSRF) for Servlet Environments