Simon Willison’s Weblog

Entries tagged quora, security, json in 2011

Filters: Type: entry × Year: 2011 × quora × security × json ×


What are the JSON security concerns in web development?

Be very careful when implementing JSON-P for authenticated actions—evil third party sites could assemble URLs to your user’s private data and steal it. This attack has worked against Gmail in the past.

[... 203 words]

Types

Years

Months

Tags