Simon Willison’s Weblog

Entries tagged quora, security, json

Filters: Type: entry × quora × security × json ×

What are the JSON security concerns in web development?

Be very careful when implementing JSON-P for authenticated actions—evil third party sites could assemble URLs to your user’s private data and steal it. This attack has worked against Gmail in the past.

[... 203 words]