URL-manipulation - still a relevant threat

Submitted by Kai on Tue, 2007-12-11 08:37.

And now the Canadian Passport application web-site was discovered to have a fault - by a simple change of the ID in the URL, all applications and privacy data of other users where available.

Duh.

Discovered at the I.T. Security Guy.

Kai's blog

Post new comment

Navigation

Recent comments

As an "old fart" I totally
12 hours 12 min ago
good
6 days 2 hours ago
belt buckles
2 weeks 2 hours ago
Appreciation
2 weeks 6 hours ago
Some good tips, especially those not mentioned elsewhere
2 weeks 3 days ago
Was called by Premier just a few mins ago
5 weeks 1 day ago
Nice flight
5 weeks 2 days ago
Anyone who has traveled will
5 weeks 4 days ago
These tips are very
6 weeks 1 day ago
Your tips and suggestions
6 weeks 1 day ago

Recent blog posts

Bookmark/Search this post

The blogger is Kai Roer, a European Information security professional.

Lijit

Resources

www.isc2.org

Kai's training blog

Archive

Search icon Explore Security Bloggers Network (a FeedBurner Network)

Blog Network:

Name:
Roer.com information security blog

Topics:
security, technology, management

Join my network