Beta
×

Welcome to the Slashdot Beta site -- learn more here. Use the link in the footer or click here to return to the Classic version of Slashdot.

Thank you!

Before you choose to head back to the Classic look of the site, we'd appreciate it if you share your thoughts on the Beta; your feedback is what drives our ongoing development.

Beta is different and we value you taking the time to try it out. Please take a look at the changes we've made in Beta and  learn more about it. Thanks for reading, and for making the site better!

Sears.com Squelches Web Programming Blunder

blitzkrieg3 (995849) writes | more than 5 years ago

Security 0

blitzkrieg3 (995849) writes "Earlier today someone made public a trivial exploit on the Sears.com website. Sears was storing page paramaters from the client editable url into the catagory of the page, leading to some pretty funny results. Once the catagories were loaded into the cache, every subsequent hit would pull up the same user submitted catagories, even without any page paramaters. TMZ and Fox News have their own reports. Reddit has since been forced to take the post off of their front page by their parent Conde Nast, but the page can still be accessed via permalink."
Link to Original Source

Sorry! There are no comments related to the filter you selected.

Check for New Comments
Slashdot Login

Need an Account?

Forgot your password?