URL-manipulation - still a relevant threat
Submitted by Kai on Tue, 2007-12-11 08:37.
And now the Canadian Passport application web-site was discovered to have a fault - by a simple change of the ID in the URL, all applications and privacy data of other users where available.
Duh.
Discovered at the I.T. Security Guy.
Sponsors:
![]()
|





Post new comment