Simon Willison’s Weblog

Items tagged quora, security, javascript, json

Filters: quora × security × javascript × json ×

What are the JSON security concerns in web development?

Be very careful when implementing JSON-P for authenticated actions—evil third party sites could assemble URLs to your user’s private data and steal it. This attack has worked against Gmail in the past.

[... 203 words]