Simon Willison’s Weblog

Items tagged quora, json, javascript, security

Filters: quora × json × javascript × security ×

What are the JSON security concerns in web development?

Be very careful when implementing JSON-P for authenticated actions—evil third party sites could assemble URLs to your user’s private data and steal it. This attack has worked against Gmail in the past.

[... 203 words]