Spoofing is a kind of deliberate interference that aims to manipulate global navigation satellite system (GNSS) receivers into counterfeit position solutions. Conventional anti-spoofing methods are implemented prior to the calculation of the position solution, depending on the specific spoofing attack mechanisms. The paper presents a spoofing detection and mitigation method implemented in the position domain. The proposed method projects the correlograms of the visible satellites to a position-clock bias domain to construct the position domain projected correlogram. P(Y) code signatures retrieved from a reference station receiver are used to identify the counterfeit position solution and remove it from the victim receiver. Compared with the conventional single-channel spoofing detection technique, the proposed anti-spoofing method is more robust against thermal noise by combining the energy from multiple satellites. Detailed mathematical derivation of the statistical characteristics of this method is presented. Its effectiveness is validated using a realistic dataset generated by a Spirent GNSS simulator and NordNav wideband front-end. Results show that the proposed algorithm is capable of not only detecting a spoofing attack but also removing the spoofing effect from the victim receiver.