FUDforum
Fast Uncompromising Discussions. FUDforum will get your users talking.
Home » FUDforum Development » Bug Reports » Security hole with URL cut and pastes?
Show: Today's Messages :: Polls :: Message Navigator
Switch to threaded view of this topic Create a new topic Submit Reply
Security hole with URL cut and pastes? [message #18349] Tue, 18 May 2004 18:50 Go to next message
BugLaden is currently offline  BugLaden   United States
Messages: 216
Registered: February 2002
Location: Westminster, MD
Karma: 0
Senior Member
We've noticed on my forum the possibility of a security hole.

If you paste the URL of a page into an email, another forum, etc with the &S= as part of the URL, is it possible, anyone can link in under that user's login session?

-=BugLaden

[Updated on: Tue, 18 May 2004 18:50]

Report message to a moderator

Re: Security hole with URL cut and pastes? [message #18350 is a reply to message #18349] Tue, 18 May 2004 18:59 Go to previous message
Ilia is currently offline  Ilia   Canada
Messages: 13241
Registered: January 2002
Karma: 0
Senior Member
Administrator
Core Developer
No, just because you give someone a session id does not mean that they can use it.

FUDforum Core Developer

Report message to a moderator

  Switch to threaded view of this topic Create a new topic Submit Reply
Previous Topic: Last registered user screwed up
Next Topic: "mark all unread forum messages read" - error
Goto Forum:
  

-=] Back to Top [=-
[ Syndicate this forum (XML) ] [ RSS ]

Current Time: Thu Sep 19 17:21:55 GMT 2024

Total time taken to generate the page: 0.02970 seconds
.:: Contact :: Home ::.

Powered by: FUDforum 3.1.3.
Copyright ©2001-2023 FUDforum Bulletin Board Software